NASA engineers use high-tech gear 
to examine Discovery. PAGE 10 


Medicare's giveaway of an EHR app could reinvent the health 
records software business, says Frank Hayes. PAGE 46 
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Dispute Over Cisco Flaw 
Sparks Criticism, Debate 


Vendor muzzles researcher after initial router exploit disclosure 





BY JAIKUMAR VIJAYAN 
Cisco Systems Inc.’s attempts 

last week to stop an IT securi- 
ty researcher from discussing 

a hack into its router software 
evoked criticism from 


| how vendors should respond 


to security problems. 

The controversy erupted af- 
ter Michael Lynn, who until 
last week worked at Internet 


Security Systems Inc., 
some users and analysts, aria made a presentation at 


along with calls for more 
information from the 
vendor about the issues 
surrounding the flaw. 

The dispute between 
Cisco and the researcher 
also reignited the debate on 
responsible practices for dis- 
closing vulnerabilities and 


the Black Hat USA con- 
ference in Las Vegas. 
Lynn detailed a way 

to shut down a Cisco 
router by taking advan- 
tage of a known and 
already patched flaw in the 
vendor’s Internetworking 
Operating System software. 


Read more 
IT security 
coverage at 
our Web 


QuickLink 
k1600 


Site: 


Delays, Added Costs Threaten 
University’s ERP Apps Rollout 


Project management, testing cited as issues 





BY MARC L. SONGINI 
After having missed a go-live 
date in April because of prob- 
lems in project management, 
software testing and other 
areas, the University of Wis- 
consin is reassessing an over- 
budget ERP rollout that has so 
far cost it $25 million. 

The university was working 
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to install human resources, 
payroll and benefits manage- 
ment applications from Law- 
son Software Inc. to replace a 
30-year-old mainframe sys- 
tem, with an eye on cost sav- 
ings and improved ease of use. 
But active work on the project 
was effectively put on hold in 
ERP Rollout, page 45 
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Both Cisco and Atlanta- 
based ISS tried to stop Lynn 
from giving the presentation 
and even compelled Black 
Hat’s organizers to destroy 
CDs and rip out more than 30 
pages containing Lynn’s slides 
from thousands of copies of 

Cisco Flaw, page 14 


FDIC Warns 
Finance Firms 


On Spyware 


Some IT managers 
say they’re already 
taking precautions 


BY LUCAS MEARIAN 
Spyware is being recognized 
as a major security threat 
across the financial services 
industry, prompting warnings 
from the Federal Deposit In- 
surance Corp. and analysts 
about the risks posed by the 
information-seeking software. 

IT managers such as 
Matthew Speare, chief infor- 
mation security officer at 
M&T Bank Corp. in Buffalo, 
NY., said last week that they 
Spyware, 
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Mr. 50,000 Global 
Remote and Mobile 
Users Connected 
Without a VPN. 


NISSAN 






“At Nissan, we expect to save at least $135 million annually 
thanks to the efficiencies that Windows Server 2003 and 
Exchange Server 2003 are helping us achieve.” 


Toshihiko Suda 
Senior Manager, Nissan Motor Company, Ltd. 


Microsoft® is 


Windows 
Server System 


Make a name for yourself with Windows Server System. 
An upgrade to Microsoft Windows Server System 
made it possible for 50,000 worldwide employees 
at Nissan Motor Company to have more secure 
remote access to their e-mail and calendars 
from any Internet connection, without the hassle 
and expense of a VPN. Here's how: By deploying 
Windows Server 2003 and Exchange 2003, not only 
did Nissan IT meet the CEO’s demand for better global 
collaboration, they expect to save at least $135 million 
by streamlining their messaging infrastructure 
To get the full Nissan story or find a Microsoft 
Certified Partner, go to microsoft.com/wssystem 


Windows Server System™ includes 
Server Platform Windows Server 


Virtualization Virtual Server 


Data Management & Analysis SQL Server 


Communications Exchange Server 


Portals & Collaboration Office SharePoint® Portal Server 


Integration BizTalk* Server 
Management Systems Management Server 
Microsoft® Operations Manager 


Internet Security & Acceleration Server 
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A sing iianes company wanted to mobili its seats 


without putting its IT staff into overdrive. Insight 


activated and tested. mobile aircards and shipped them s 


to each user with simple-to-follow instructions. Out of the 


box and into their notebooks, agents received customized 
aircards that were ready for business. The end result: 


A successful mobile mission accomplished in record speed. 
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BPO: Big Political Opportunity 


In the Management section: CIOs have the com- 
prehensive view, process know-how and experience 
to take the lead in business process outsourcing, say 
IT leaders such as Emcor’s Peter Baker. Here’s how 
to do it — and why you should. Page 33 


NEWS 


: TECHNOLOGY 


OPINIONS 





6 Microsoft releases the first 
beta of its Windows Vista 
client, which will include tools 
for software image installs 
and user account protection. 


Big-iron managers continue 
to fret about a looming short- 
age of mainframe experts. 


NASA is using new high-tech 
equipment to examine the 
space shuttle Discovery for 
signs of potential damage. 


The Defense Department has 
made little progress on an en- 
terprise IT architecture, de- 
spite spending four years and 
$318 million on the project, 
according to a GAO report. 


Feuding vendors bury the 
hatchet and agree to work 
together on the proposed 
802.11n Wi-Fi standard. 


Global Dispatches: A video 
monitoring system developed 
by a Japanese company could 
aid in security screenings; and 
India’s Wipro loses its third 
executive in two months. 


GM adopts Sun’s middleware 
stack in a deal aimed at sim- 
plifying the automaker’s soft- 
ware licensing burdens. 


The Chicago public school 
system uses hosted IT gover- 
nance to support more schools 
on a limited budget. 


45 Q&A: New software-licensing 
models haven’t caught on, de- 
spite IT executives’ desire for 


more-flexible terms, says PwC 


consultant David Marston. 


25 Future Watch: Thanks for the 


(Future) Memories. Tech- 
nologies now in research labs 
could eventually replace con- 
ventional computer memory 
architectures. One possibility: 
do-everything memories. 


: 28 Geek’s Garden: Check out our 


new feature. It’s a a collection 
of news and curiosities from 
the world of IT, with a little 
historical perspective includ- 
ed in the mix. 


: 29 Security Manager’s Journal: 


User’s End Run Around VPN 
Leads to New Push. A worm 
crawls into the network when 
the VPN is accessed improp- 
erly. Mathias Thurman now 
has to figure out how to avoid 
a repeat of the disaster. 


- MANAGEMENT 





; 31 Lost, Stolen or Strayed. The 


most advanced backup and 
storage strategies are only as 
strong as your weakest human 
and logistical links. Here’s 
what you can do about it. 


: 36 Think Tank: IT executives 


need to prepare for a world 
where RFID chips can be 
used to track food ingredients, 
fruit, shopping carts, soldiers, 
construction tools and gam- 
bling chips. 


: 37 Career Watch: HP CIO Gilles 
: Bouchard advises readers on 
pursuing training and getting 
that first IT job. Plus, learn who 
really loves the IT department. 
And is offshoring as prevalent 
as most people think? 


8 On the Mark: Mark Hall re- 
ports that Intel has warned 
developers to be careful when 
debugging multithreaded ap- 
plications. And its new com- 
pilers are designed to help 
you do it right on servers built 
around dual-core processors. 


Don Tennant thinks Micro- 
soft’s maniacal protection of 
its own trademarks makes it 
doubly unacceptable for it to 
run roughshod over the trade- 
marks of other companies. 


Bruce A. Stewart has noticed 
that the most effective IT 
achievers aren’t surrounded 
by users who don’t “get” it. 


17 Thornton A. May offers advice 
for IT workers experiencing 
“job shock.” 


30 Douglas Schweitzer cele- 
brates a happy second an- 
niversary as a Macintosh user. 


40 Paul Glen has suggestions for 
dealing with committees that 
won't die. 


46 Frankly Speaking: Frank 
Hayes suggests that a 1980s 
taxpayer-funded VA software 
project might help create a 
de facto electronic health 
records standard. 
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Healing Power 


In the Technology section: Intelligent sensors, 
demand response systems and other emerging 
technologies could be components of a self- 
healing electric grid that’s expected to be devel- 
oped over the next five to 10 years. Page 21 
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Cool Sites 

Are you in a Web surfing rut? Check out 
some of these favorites from Computerworld 
staffers, and freshen up those bookmarks! 

© QuickLink 25800 


The Billion-Dollar Storage Error 
IT MANAGEMENT: Cataphora’s Elizabeth 
Charnock has advice for keeping your com- 
pany from being caught in a legal dilemma 
over archived data. @ QuickLink 55681 


How to Safeguard Offshore Data 
SECURITY: Paul Henry of CyberGuard re- 
turns from visiting overseas facilities with 
advice about how to secure outsourcing op- 
erations abroad, including tips on protecting 


customer data. @ QuickLink 55699 
Lock Down That Mac 


MACINTOSH: Security should always be on 
the minds of systems administrators, says 
columnist Ryan Faas, who takes a look at 
physical security and discusses ways to lock 
down your workstation — and the data on it. 


© Quicklink 55694 


Blogs and Blogwatch 

Computerworld editors and IT professionals 
blog every day, offering opinions, tips, com- 
mentary and more. Don’t know where to 
start with blogs? Don’t have enough time 

to sort through them? Every morning, IT 
Blogwatch identifies the best new Computer- 
world blog posts as well as others around 


the Net. @ QuickLink a5930 
What's a QuickLink? 
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Sybase to Acquire 
DB, Mobile Vendor 


sition in Europe, Sybase Inc. said 
Friday that it has agreed to buy 
Extended Systems Inc., a vendor 


bile-access technology. Sybase 
will pay $71.3 million for Extend- 
ed Systems, which will be inte- 
grated into its iAnywhere unit. 
The deal is expected to be com- 
pleted in the fourth quarter. 


Microsoft Wins 
Round With Google 


A county court judge in Seattle 
granted Microsoft Corp. a re- 
straining order that prevents a 
former employee in China from 
doing competing work at Google 
Inc. Microsoft is suing to prevent 
Kai-Fu Lee, who formerly ran its 
Beijing research center, from 
helping Google to counter its 
search engine strategy. Google 
downplayed the order, saying it 
never intended for Lee to work in 
direct competition with Microsoft. 


Sun Says It Plans 
To Cut 1,000 Jobs 


Sun Microsystems Inc.’s chief fi- 
nancial officer said the company 
plans to lay off about 1,000 work 
ers as part of its ongoing cost- 
cutting strategy. CFO Steve Mc- 
Gowan disclosed the planned lay- 
offs during a conference call on 
Sun’s fourth-quarter financial re- 
sults. But he didn’t say what op- 
erations would be affected at the 
company, which currently has 
about 31,000 employees. 


Lenovo Seeks Lead 


in Supercomputing 
Lenovo Group Ltd., the Beijing- 
based vendor that bought IBM’s 
PC operations, said it’s working 
on a supercomputer that would be 
nearly 10 times faster than exist- 
ing systems. The system will per- 
form up to 1,000 TFLOPS and 
should be ready between 2006 
and 2010, Lenovo said. 
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Microsoft Issues OS Betas, 





ICROSOFT CORP. 
last week re- 
leased the first 
beta copy of its 
recently christened Windows 


| Vista client operating system, 


as well as a test version of its 
next server operating system. 

But only corporate users 
who are members of Micro- 
soft’s MSDN development 
program, TechNet or Win- 
dows Vista Technical Beta 
Program will be able to down- 
load the early releases of the 
client operating system. The 
Windows Server beta, which 
is still code-named Longhorn, 
is available to Technical Beta 
Program participants. 

One newly detailed client 


| feature that’s expected to ap- 


peal to corporate IT shops is 
User Account Protection, 
which will enable administra- 
tors to give end users only the 
system privileges they need to 
do their work. 

One IT manager, who asked 
not to be named, said his com- 


Microsoft Plans Premium Editions of Windows, Office 


AT MICROSOFT'S annual finan- 
cial analyst meeting last week, 
top executives disclosed sketchy 
plans to introduce premium ver- 
sions of products such as Win- 
dows and Office in hopes of 
driving more revenue growth. 
CEO Steve Ballmer said the 
company expects to introduce a 
client-level enterprise edition as 
part of “the Windows Vista gen- 
eration,” as well as a higher-end 
version of Office. He compared 
the plan to the introduction of 
the professional edition of Win- 


dows, which he said drove “iter 





pany has been forced to assign 
administrator privileges to 
many users because of appli- 
cation requirements and logis- 
tics. The company’s limited IT 
staff doesn’t have time to 
make changes to all remote 
laptops, so users are allowed 


| to make simple changes on 


their own. But that isn’t the 
desired approach. “We're try- 
ing to get more and more off 
the admin [setting],” the IT 
manager said. 

Michael Silver, an analyst at 
Gartner Inc., estimated that he 
received 100 calls last year 


et Do we want 
to go through 
another operating 
system upgrade? 

. . » We'd have to 
take a look at it. 


BRUCE SCHMIDT, WORKSTATION 
ARCHITECTURE AND CONFIGURATION 
TEAM LEAD, ATCO I-TEK INC 


the home version of the client 
operating system. 

Ballmer added that Microsoft 
is thinking about a new Office 
Server concept that would have 
premium client-access licenses 
associated with it, as well as a 
premium client-access license 
for Windows Server. 

“It's premium value to premi- 
um price,” Ballmer said. “We're 
of course going to keep the cur- 
rent product set around, and 
we're going tc have to prove to 
our customers that they want the 


premium value.” 





Details More Features 


Looking to improve its market po- | 


| Vista to include tools for software 
| image installs, user account protection 


that focuses on database and mo- | 
| BY CAROL SLIWA 


from clients who wanted to 
lock down end users’ systems. 
He said even some main- 
stream software applications 
require users to run in admin- 
istrator mode. 

Microsoft’s research indi- 
cates that 85% of corporate 
users and 97% of consumers 
run their machines as admin- 
istrators, according to Neil 
Charney, a director of product 
management at the company. 
Charney said Microsoft hopes 
the percentages will decline as 
a result of the User Account 
Protection feature. 

Another IT pain point that 
Microsoft hopes to address 
through Windows Vista is the 
creation of operating system 
images on a system. A new 
feature will provide IT man- 
agers with a single file that 
contains one or more com- 
plete installation images. 

Charney said IT shops now 
have to create separate images 
for users who speak different 
languages or for PCs with dif- 
fering application allotments. 
Windows Vista includes a tool 
called xImage for building im- 
ages, and IT staffers will be 
able to store one image with 


| 


Hawaiian Electric Co. in Honolu- 
lu, said he hopes the premium 
products will be included as part 
of the utility's enterprise agree- 
ment with Microsoft. 

“Microsoft keeps talking 
about the partnership they're 
creating with us, and I'd like to 
think they'd invite us to that par- 
ty.” 





for IT 


Windows Vista 
Beta 1 


= User Account Pro- 
tection and Network 
Access Protection 


= Windows Service 
Hardening, to monitor for 
abnormal activities in the file 
system, registry and network 


= Antimalware tools to de- 
tect and remove worms 


= Internet Explorer 7 with 
tabbed browsing, a phishing fil- 
ter and a built-in viewer for RSS 
Web feeds 


= The final version of 
the user interface 


= Updates to Media 
Piayer and bundled games 


multiple deployment configu- 
rations, he said. 

But Silver said many compa- 
nies already have turned to 
third-party products to ad- 
dress their imaging needs. 

For example, at Edmonton, 
Alberta-based Atco Ltd., no 
more than 200 of the 3,500 
desktops have the same oper- 
ating system configuration, so 
the company’s IT arm, Atco 
I-Tek Inc., had to devise a solu- 
tion to the imaging problem. 
The IT shop creates an image 
of the core operating system, 
customizes it and then distrib- 
utes it using IBM’s Tivoli soft- 
ware, noted Bruce Schmidt, 
workstation architecture and 
configuration team lead. 

Schmidt said Atco will have 
to be “extremely compelled” 
to move from Windows XP to 
Windows Vista, particularly 
since its volume-licensing deal 
has expired. He said the com- 
pany is currently “going 
through the pain” of installing 
XP Service Pack 2. “Do we 
want to go through another 
operating system upgrade? I 
don’t know. We'd have to take 
a look at it,” he said. @ 55864 
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Shortage of Mainframe Skills 
May Give IT Execs Gray Hairs 


BY PATRICK THIBODEAU 
Art Louise is like many main- 
frame professionals. He has 
three decades of experience 
with systems and program- 
ming languages such as Cobol 
and assembler that remain 
critical in data centers but 
aren’t the skills of choice for 
most new IT professionals. 
The generational gap will 
likely be obvious at the Share 
user group’s conference later 
this month in Boston. And 
Louise, who manages main- 
frames at New York-based 
Group Health Inc., said last 
week that businesses like his 





may soon have trouble finding | 
workers with mainframe skills. 

The need to integrate third- 
party software with upgraded 
mainframe operating systems 
and custom applications will 
be one of the big issues facing 
companies, Louise predicted. 

“There aren't a lot of people 
who are going to school for 
Cobol,” he said. “Basically, it’s 
a trickle-down issue.” 

IBM and other vendors also 
have concerns about a lack of 
mainframe know-how. 

“I personally feel that there 
is a skills shortage out there,” 
said Bill Miller, a vice presi- 





dent and general manager at 


| Houston-based BMC Software 
Inc. “Colleges and universities | 


in the past 10 years have not 
been delivering to the market- 


| place people with assembler 


skills, especially.” 
IBM, citing the skills gap, 


| said last month that there are 


now 150 colleges and universi- 
ties worldwide participating in 
its Academic Initiative. The 
program, which was launched 
in 2003, includes training on 
the company’s zSeries main- 
frames. IBM hopes to double 
the number of schools that are 


| involved by year’s end. 


“I think people recognize 
the fact that there is a poten- 
tial problem coming,” said Bob 
Shannon, treasurer of Share 
and a manager at Rocket Soft- 
ware Inc. in Newton, Mass. 
Share runs many mainframe- 
related training programs. 


Perception Problem 

But the Chicago-based user 
group and other mainframe 
backers may be facing an up- 
hill fight luring many young 
IT workers to the technology. 

For instance, Northern IIli- 
nois University in DeKalb is 
one of the universities with a 
mainframe-specific program. 
But the perception among in- 
coming students is often that 
the mainframe is an old, un- 
interesting technology, despite 
the high job placement rate 
of mainframe graduates, said 
Penny McIntire, a faculty 
member and assistant to the 
chairman of the computer 
science department. 

The makeup of the faculty 
at Northern Illinois may rein- 
force that perception, she not- 
ed. Many of the professors 
who teach mainframe classes 
are of baby boomer age or old- 
er, said McIntire, who added 
that she is worried about re- 
placing them when they retire. 

IBM’s decision to put Linux 
on the mainframe has helped 
expand IT interest in the sys- 
tems, and about 25% of the at- 
tendees at recent Share con- 


IBM Bulks Up Big-lron Security Tools 





NEW YORK 


IBM last week announced its 
first mainframe upgrade in two 
years, and company officials 
said they expect the new Sys- 
tem z9 hardware to play a par- 
ticularly important role in enter- 
prise IT security management. 

IBM said the 29 will be able to 
rapidly encrypt data stored on 
the system itself or on tapes. It 
will also be capable of process- 
ing up to 6,000 “secure online 
handshakes” per second for 
e-commerce transactions via 
the Secure Sockets Layer proto- 
col. That represents a threefold 
improvement over the perfor- 
mance of the existing zSeries 
7990 high-end model, IBM said. 

It added that overall, the z9 
can process up to 1 billion trans- 
actions per day - more than 
double the number that can be 
handled by the 2990, which was 
code-named T-Rex while it was 
being developed. 

The Workers’ Compensation 
Board of Alberta, Canada, was an 
early adopter of the 2990. Murray 
Mitchell, manager of enterprise 
architecture at the government 
agency, said he recently heard a 
presentation from 


IBM's System z9 


ferences were first-time visi- 
tors, according to Louise, who 
is active in the user group. 

IT executives such as Jim 
Dillon, CIO of New York’s 
state government, remain 
firmly committed to using 
mainframes. “We see us stay- 
ing with the mainframe for 
some time,” said Dillon, who 
attended the announcement of 
IBM’s System z9 hardware last 


IBM about the 29 and thinks it 
will give him a performance gain 
of about 35%. 

“That's a far cry from Moore's 
Law,” said Mitchell, adding that 
he was “a little underwhelmed” 
by the performance numbers. 

But the agency's lease on the 
7990 is up for renewal next year, 
and Mitchell said the cost of 
maintaining an older system 
may help make the case for 
moving to the 9. 

The 29 line will include five 
models that can scale from one 
to 54 processing units, up from 
a maximum of 32 CPUs on the 
2990. Systems supporting up to 
38 processors are due for re- 
lease next month, with the top- 
of-the-line S54 model following 
in November, IBM said. 

Charles King, an analyst at 
Pund-IT Research in Hayward, 
Calif., said IBM’s emphasis on 
the 29's security features, espe- 
cially for storage media that can 
be easily lost or stolen, “is 
something that clearly is going 
to get people looking at it.” 

IBM also detailed upgraded 
virtualization technology that 
can work with an expanded 

number of its systems and 

products from other ven- 
dors, including Hewiett- 
Packard Co. and Sun 
Microsystems Inc. 

The Virtualization En- 
gine 2.0 software sup- 
management on sys- 
tems based on IBM's 
Power5 processors, in- 
tegration with zSeries 
network load-balancing 
capabilities, and other 
management and auto- 
mation tools for all of the 
company's eServer lines. 

~ Patrick Thibodeau 


| week (see story above). 


Dillon said he particularly 


likes the high-availability and 
security features that main- 
frames offer. He added that 

| even though New York has 
moved more of its applica- 
tions to open systems, he 

| wants to continue taking ad- 
vantage of the skills and ex- 
pertise of the state’s main- 
frame professionals. @ 55867 
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Cisco to Buy Vendor 
Of Network Tools 


Cisco Systems Inc. has agreed to 
pay about $97 million to acquire 
Sheer Networks Inc., a maker of 
tools for managing complex net- 
works. San Jose-based Sheer’s 
products include Sheer DNA, 
which can be used to create real- 
time, virtual networks. The 100- 
employee company will become 
part of Cisco’s Network Manage- 
ment Technology Group. Cisco 
said it expects to complete the 
deal by the end of October. 


Alliance Publishes 
Grid Security Paper 


The vendor-backed Enterprise 
Grid Alliance moved to accelerate 
the adoption of grid computing 
among corporate users by pub- 
lishing its first paper on the secu- 
rity needs of grid technology. The 
paper is intended to help end 
users, vendors and standards 
groups identify the risks associat- 
ed with the use of grid computing 
for big business applications. 


HP, Altiris Unveil 
Jointly Built Tools 


Hewlett-Packard Co. and Altiris 
Inc. have unveiled a pair of jointly 
developed client management 
software bundles. HP and Lindon, 
Utah-based Altiris had delayed the 
releases from early last month 

to avoid being overshadowed by 
the steady stream of other HP 
product and restructuring news in 
recent weeks. HP resells Altiris’ 
life-cycle management software 
under an earlier deal. 


Sun Reports Profit, 
But Sales Fall Again 


Sun Microsystems Inc.’s quarterly 
revenue continued to decline in its 
fourth quarter, but the company 
posted a profit thanks to a one- 
time tax benefit. 


REVENUE = (SPRORTID 
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. . . programmers in the debug phase of application de- 
velopment. “You still tend to think of threads as 
distinct tasks,” says James Reinders, director of mar- 
keting and business development at Intel Corp.’s 
software products division. That’s a mistake, he 


warns. Rein- 
ders, a former 
supercom- 
puter pro- 
grammer, 
notes that 
threads — 
those parts 
of a program 
that can be 
run in paral- 
lel — must 
be debugged individually. 
“Yet they aren’t completely 
independent of each other,” 
he says. For example, threads 
may share a microprocessor’s 
cache memory, but you need 
to make certain that they 
don’t overlap their calls to the 
cache and pull out the wrong 
data. Since Intel projects that 
85% of servers shipped by the 
end of 2006 will be based on 
dual-core processors, thread- 
ed software will likely be- 
come the norm. Reinders says 
you can migrate existing apps 
to run better on dual-core 
systems by using dual-core- 
aware compilers, such as In- 
tel’s brand-new 9.0 family. 
The compilers can scan your 


REINDERS 
advises IT to 
ell em Ulery 
Peete 





code and tell you where the 
best places are to thread 

an application. Pricing starts 
at $399, 


Network tool aims 
to help secure. . . 
. .. your applications. Despite 
their best efforts, developers 
don’t always succeed in pro- 


| tecting their code from mali- 


cious intruders. Erik Giesa, 
vice president of product 
management and marketing 
at F5 Networks Inc., says the 
Seattle-based company is de- 
veloping technology that lets 
IT managers apply network 
security policies to guard 
apps. For example, F5’s tech- 
nology would prevent a pro- 
gram from revealing details 
about an ap- 
plication en- 
vironment 
to hackers 
via error 
messages 
a that they 
might trick 


Saeki § the software 


WV an lel 4 


to protect apps. 
: ual ~The as-yet- 


into sending. 





unnamed product will be 
shipped as part of an appli- 
ance and added to the compa- 
ny’s Big-IP switch by year’s 
end, Giesa says. 


Open-source rating 
service is nigh. . . 

. .. for corporate IT. Nick 
Halsey, vice president of sales 
and marketing at SpikeSource 
Inc. in Redwood City, Calif., 


says there is “no objective 


way” to evaluate the plethora 
of open- 
source tech- 
nologies 
available on 
the Internet. 
For example, 
Joaquin Ruiz, 
SpikeSource’s 
vice presi- 
dent of prod- 
uct market- 
ing, claims 
that there are nearly 375 con- 
tent management projects 
alone listed on SourceForge.- 
net, a Web site for open- 
source developers. Later this 
month, SpikeSource, Intel 
and Carnegie Mellon Univer- 
sity’s Center for Open-Source 
Investigation will unveil the 
Business Readiness Rating, a 
service that evaluates how 
well a given technology will 


work in the 


corporate 
world. Ruiz 
says the ratings 
won't take a 
one-size-fits-all asctegeredes 
M open-source 
approach — PT TLCS 
available for 
SpikeSource’s 
eco tr ae 


eh 
i 
= 


BU Pam ee 
to rate open- 
Sen eR eg 
business. 


they’ll account 
for different 
business fac- 
tors, such as a 
company’s size and the indus- 
try it’s in. The rating service 
should be ready for use by 
the end of the year. 

In addition, SpikeSource, 
which certifies the compati- 
bility of a variety of open- 
source stacks [QuickLink 
53783], today will begin certi- 
fying custom combinations 
of open-source code. The 
company will configure and 








HOT TECHNOLOGY TRENDS, NEW PRODUCT 
NEWS AND INDUSTRY BUZZ BY MARK HALL 


test open-source software 
and provide automated instal- 
lation tools at no cost. To 
assure the continued compat- 
ibility of your components, 
you can subscribe to the 
company’s update service 

for an annual fee of $995 

per server. 


Search tool for IT 
infrastructures is. . . 

. .. due to be released next 
week. Splunk Technology 
Inc.’s Personal Server soft- 
ware runs on a Linux system 
but can collect data from con- 
figuration, log and database 
transaction files plus other 
data repositories on comput- 
ers throughout your network. 
Michael Baum, CEO of San 
Francisco-based Splunk, says 
these files are the ideal place 
to conduct a root-cause 
analysis when apps fail, but 
they’re too big and cumber- 
some to peruse manually. 
Splunk’s product “dynamical- 
ly finds relationships be- 
tween events and the data,” 
claims Baum. A workgroup 
version will ship next month, 
and an enterprise version is 
due in the first quarter of 
2006. Pricing hasn’t been set. 


Forget searching 

for keywords and... 

. .. consider looking for con- 
cepts. Dallas-based Engenium 
Corp., which sells its Semet- 
ric software to other vendors 
for inclusion in their prod- 
ucts, is planning a September 
release of a version that cor- 
porate users can license di- 
rectly. CEO Dave Chaplin 
says Semetric uses “semantic 
analysis” to connect concepts 
in ways that keyword search- 
ing can’t match. For example, 
a hiring manager seeking a 
Java developer might not find 
candidates who describe 
themselves as object-oriented 
programmers. Chaplin claims 
that Semetric 4.0 understands 
the conceptual equivalence of 
the two. Pricing starts at 
$25,000. @ 55834 
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CA to Cut 800 Jobs 
Despite Profit Rise 


Computer Associates Internation- 
al Inc. plans to cut 800 employ- 
ees, or 5% of its workforce, in a 
restructuring aimed at saving 
$75 million per year. CA also said 
its first-quarter profits more than 
doubled on an 8% sales increase. 


CA BY THE NUMBERS 


Eo 


Indian ISP Buys 
IT Firm in Bermuda 


Videsh Sanchar Nigam Ltd., a 
Mumbai, India-based telecommu- 
nications and Internet service 
provider, has agreed to acquire 
Teleglobe International Holdings 
Ltd., a Bermuda-based provider of 
wholesale voice, data, IP and mo- 
bile signaling services, for $239 
million. The purchase of Teleglobe 
is part of a bid by VSNL to expand 
beyond India. VSNL closed a deal 
to buy Tyco International Ltd. for 
$130 million last month. 


second-quarter software license 
sales dropped 20% from last year, 
contributing to another net loss. 


SO 
a2'os [som | $75M 


Microsoft Adds 
Web Mapping Tool 


Microsoft Corp. launched a new 
online local search tool that goes 
head to head with an offering 
from Google Inc. MSN Virtual 
Earth is similar to Google Maps, 
providing both street-map and 
satellite views, as well as driving 
directions. By year’s end, Micro- 
soft plans to expose Virtual Earth 
as a Web service for organiza- 
tions to use on their Web sites. 





Camera and laser 
sensors provide 
flight engineers 


BY TODD R. WEISS 
ASA SCIENTISTS and 
engineers are using 
specialized high- 
tech components to 

painstakingly inspect the 

space shuttle Discovery for 
any possible damage caused 
by a piece of insulating foam 
that broke away from the 
craft’s external fuel tank dur- 
ing last Tuesday’s liftoff. 

A black-and-white camera, 
two laser sensors and a 50-ft. 
boom extension that was 
added to the shuttle’s robotic 
arm are allowing NASA's flight 
engineers to peruse every 
square inch of Discovery’s out- 
er surface for flaws that could 
endanger its return to Earth. 

NASA officials said Friday 
that the shuttle doesn’t appear 
to have been damaged by the 
2.5-foot-long piece of foam. 
But continuing inspections 
were being done to firmly rule 
out such a scenario. 

Adding to NASA's concerns 
was the apparent loss of a 1.5- 
in. section of one of the thou- 
sands of ceramic heat shield 
tiles on the shuttle. That situa- 
tion is also being reviewed 
using images captured by the 
new sensors. The equipment 
was added after the space 
shuttle Columbia was lost on 
re-entry in February 2003 as a 
result of launch-related dam- 
age from a piece of foam that 
smashed into the leading edge 
of a wing and created a hole. 

The exterior inspections and 
evaluations of Discovery were 


| being conducted as part of the 


mission’s original schedule, 
said Debbie Rahn, a spokes- 
woman for the space agency. 
“We want to understand the 
state of the vehicle before the 
crew returns,” she said. 

The boom extension was 


| 
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built by the 
Brampton, On- 
tario-based space 
missions group of 
MacDonald, Det- 
twiler and Associ- 
ates Ltd., using 
spare parts from 
the original robot- 
ic arm. Herb 
Goettmann, an en- 
gineer at MDA, 
said the laser sen- 
sors and camera 
positioned at the 
end of the extension can be 
operated by the shuttle crew 
to collect detailed images of 
tiles and protective panels. 
The data is then downloaded 
to engineers on Earth. 

The extension doubles the 
length of the shuttle’s robotic 
arm, and the sensors and the 
camera each have a particular 


‘High-lech Tools Help 
Monitor Shuttle Safety 


THE SPACE SHUTTLE Discovery is being moni- 
tored by NASA scientists using special sensors 
and other high-tech equipment. 


use. For example, NASA's In- 
tensified Television Camera 
includes an adjustable zoom 
lens and can take pictures in 
lighting conditions ranging 
from very dim to bright. 

One of the other devices is a 
laser dynamic range imager 
that was designed and built at 

Sandia National Laboratories 
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in Albuquerque. NASA said 
the LDRI produces 2-D and 
3-D image data as the sensor 
scans the shuttle surface. In 
3-D mode, the scanner colors 
images like a Doppler weather 
radar image, with each color 
representing the depth of sur- 
face irregularities. 

The third device on the 
boom is a laser camera from 
Neptec Design Group Ltd. in 
Ottawa that scans the shuttle’s 
exterior and records data that 
can be used to create an image 
model of its surface. The cam- 
era uses the reflection of laser 
light beamed against the sur- 
face to measure the depth and 
other characteristics of imper- 
fections, said Iain Christie, 
Neptec’s director of research 
and development. 

NASA administrator Michael 
Griffin pointed to the new 
technology in a statement an- 
nouncing that the shuttles 
won't fly again until the foam- 
loss issue is resolved. “This is 
a test flight,” he said. “The 
cameras worked well. The 
foam did not.” @ 55868 





Pentagon’s IT Upgrade 


Still at Risk, 


BY LINDA ROSENCRANCE 
The U.S. Department of De- 
fense has spent $318 million 
trying to develop an IT archi- 
tecture that supports modern 
business systems. But four 
years into the project, it doesn’t 
have much to show for its ef- 
forts, according to a report is- 
sued last week by the Govern- 
ment Accountability Office. 
The report, written by Ran- 
dolph Hite, the GAO’s director 
of IT architecture and systems 
issues, said that the Pentagon’s 
enterprise architecture is in- 
complete, inconsistent and not 
integrated. It labeled the de- 
partment’s business modern- 
ization efforts as at risk. 
According to the GAO, the 
Defense Department has 4,200 
systems that support a variety 
of business functions. The sys- 
tems environment is overly 
complex and error-prone and 
is characterized by little stan- 
dardization across the depart- 


GAO Says 


ment, multiple systems per- 
forming the same tasks, and 
the same data stored in multi- 
ple systems, the report stated. 

Hite said those problems re- 
main despite the fact that the 
agency has spent billions of 
dollars annually since 1995 to 
operate, maintain and mod- 
ernize its business systems. 

In a written response to the 
GAO, Defense Department of- 
ficials concurred with the re- 
port’s recommendations, in- 
cluding the immediate disclo- 
| sure of the department's archi- 
tecture progress and plans to 
congressional committees. 

Hite noted that the Defense 
Department hasn’t adopted 
previous GAO recommenda- 
tions. Those included the es- 
tablishment of an effective gov- 
ernance structure, the devel- 
opment of program plans that 
spell out measurable goals and 
outcomes, the creation of an 
effective configuration man- 








agement system, the develop- 
ment of a well-defined archi- 

tecture that describes current 
business and technology envi- 
ronments, or a transition plan. 

“Despite six [business en- 
terprise architecture] releases 
and two updates, DOD still 
does not have a version of an 
enterprise architecture that 
can be considered well de- 
fined,” the GAO report stated. 

In a telephone interview, 
Hite said the GAO is required 
by law to issue an annual re- 
port to Congress on the de- 
partment’s business systems 
modernization efforts that lets 
lawmakers know what is 
working and what isn’t. 

Hite pointed to a recent 
change in leadership at the 
Defense Department — 
Thomas Modly was named 
deputy undersecretary of de- 
fense for financial manage- 
ment, and Paul Brinkley was 
named special assistant to the 
undersecretary of defense for 
business transformation — 
and said he hopes the new of- 
ficials will act on the GAO’s 
recommendations. @ 55849 
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Faster Wi-Fi Approach 
Wins Broader Support 


| without replacing 
| equipment. 


| CRAIG RICHARDVILLE, 


Vendors to merge | 
rival proposals | 
for 802.1In spec 
BY MATT HAMBLEN 
Warring factions of vendors 
reached an agreement in July 
to cooperate on development 
of the next high-speed wire- 
less LAN standard, and IEEE 
standards officials last week 
said that the planned joint 
proposal could be ready for an 
initial vote in November. 

The three factions said at 
an 802.lln task force meeting 
held last month in San Fran- 
cisco that they are “working 
together to create a single 





| the Institute of Electrical and 


merged proposal,” according 
to a short statement from the 
task force that was issued by 


Electronics Engineers Inc. 


Making Progress 
The proposed standard is due 
to be made available at an 
802.lin meeting in Orange 
County, Calif., during the 
week of Sept. 18 and should be 
ready for review and a possi- 
ble vote by the entire 802.lin 
working group in November, | 
said Nancy Vogtli, the working | 
group’s publicity chairman. 
The progress was welcomed 
by Frank Hanzlik, managing 
director of the Austin-based 
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| Wi-Fi Alliance trade group. 


Hanzlik described 802.lln as a 


| “turbo-charged” version of the 


existing Wi-Fi standards be- 
cause it would quadruple ef- 


| fective data throughput over 
| WLANs to up to 1OOMbit/sec. 


at a range of 300 feet. 
That kind of throughput 


| would make 802.1In “fast 


enough for enterprise net- 
working,” Hanzlik noted. For 


| example, companies could use 
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the technology to send high- 


| quality design drawings and 


video files over internal Wi-Fi 


| networks, he said. 


But Craig Richardville, vice 
president of information sys- 


| tems at Carolinas HealthCare 
| System in Charlotte, N.C., said 
| he was concerned about the 

| potential cost of upgrading to 
| 802.1ln-based equipment. 


Richardville described the 


| promised speed of 802.l1n as 





“positive.” But, he said, “we 


| want to ensure we can contin- 


ue to grow without replacing 


| equipment. I would hope as 


new standards evolve that 


| we'd probably stay current 


with minimal investment.” 
Carolinas HealthCare has 


| more than 500 wireless access 


points running 802.llb/g that 
serve its 14 hospitals, and 


| Richardville said the company 


plans to double the number of 


access points over the next 18 
months. 

Hanzlik said that aside from 
faster throughput, 802.1in will 
rely on using several antennas 
instead of one per access point 
— a technology called Multi- 


| ple Input, Multiple Output. 


MIMO takes multiple snap- 
shots of the same signal and 


| combines them for a more 

| accurate result, which is desir- 
| able for applications such as 

| video over Wi-Fi. 


According to IEEE docu- 


| ments, the merged proposal 


will be created by three 
groups: TGn Sync, which is 


| backed by Intel Corp.; wWise, 
| which is supported by Texas 
| Instruments Inc.; and Mitmot. 


Hanzlik said he expects 


| 802.l1n to be formally ratified 

; and published as an IEEE stan- 
| dard in the first quarter of 

| 2007. @ 55852 
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Continued from page 1 


Cisco Flaw 


the conference proceedings. 

But Lynn, who initially 
agreed not to make the pre- 
sentation, resigned from ISS 
Wednesday morning and pro- 
ceeded with his talk, prompt- 
ing Cisco and ISS to secure a 
federal court injunction pre- 
venting him from further 
spreading the information. 

At a press conference 
Thursday, Lynn said his deci- 
sion was prompted by his de- 
sire to show the world that 
Cisco routers — which power 
a vast portion of the Internet 
infrastructure — are suscepti- 
ble to devastating attacks. The 
theft of some IOS source code 
last year lent urgency to his 
decision to go public with the 
information, Lynn noted. 

Cisco said it would release a 
security advisory to “clarify 
confusion” about the router 
flaw. But Cisco and ISS de- 
fended their actions, saying 
that Lynn’s presentation was 
based on incomplete research. 

“Both companies agreed 


Continued from page 1 


Spyware 


had already begun taking steps 
to better protect their systems 
before the FDIC issued a set of 
guidelines on July 22 for avoid- 
ing spyware downloads. 

Speare said he noticed a 
performance drop among the 
15,000 desktop computers at 
M&T as spyware and adware 
infiltrated systems in recent 
years. But without measure- 
ment tools or enterprise-class 
spyware blockers, he was un- 
able to quantify the full extent 
of the problem and prevent 
further infiltrations. 

For the past six months, 
Speare has been beta-testing 
Symantec Corp.’s AntiVirus 
Corporate Edition vl0, which 
includes protection against 
adware and spyware. The anti- 
virus software quarantines 
about 90% of the spyware 
coming through M&T’s fire- 
walls, Speare said. But often, 
the spyware that Symantec’s 


that further research was 
needed to better inform cus- 


| tomers” of the issues involved, 


said Cisco spokesman John 


| Noh. He added that while Cis- 


co supports the work of secu- 


| rity researchers, “we believe 

| that Lynn’s presentation con- 
| tained proprietary informa- 

| tion that he illegally obtained” 
| by decompiling source code. 


| Questions on Approach 


The manner in which Cisco 


| handled the dispute raises 
| questions, said Christofer 
| Hoff, director of enterprise se- 





curity services at Western 


| Corporate Federal Credit 


Union in San Dimas, Calif. 

“T'd like to understand that 
if this isn’t a security vulnera- 
bility but more an issue of pro- 
tecting [intellectual property] 


| rights, why were ISS and Cis- 

| co going to allow the presenta- 
| tion in the first place?” Hoff 

| said. “If it is a vulnerability, 


what is the extent of the issue? 


| What are they going to do 


about it? And when are they 
going to do it?” 
Researchers often disclose 


| security flaws and exploits for 


tools don’t catch forces the 
bank’s IT staff to reinstall soft- 
ware images on end-user PCs. 
“These programs are very 
sophisticated and well writ- 
ten,” Speare said. “Unlike 
viruses that are more of an 
ego-driven piece of software, 
there’s a financial model 
around spyware. [The au- 
thors] make money off of it. 
And anything a criminal can 
make money at, he’s going 
to do.” 


A Growing Problem 

Jered Green, a senior systems 
engineer and lead security as- 
sessor at Miami Lakes, Fla.- 
based InfoSight Inc., which 
does network penetration test- 
ing for corporate clients, said 
the spyware problem is be- 
coming worse. 

“The people with bad intent 
are realizing how powerful 
spyware can be,” Green said. 
“I'd say better than 80% of the 
PCs I’ve scanned have signi- 
ficant spyware on them.” In 
many cases, laptops and hand- 
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Ifitisa 

vulnerability, 

what is the 
extent of the issue? 
What are they going to 
do about it? And when 
are they going to do it? 


CHRISTOFER HOFF, DIRECTOR OF 

ENTERPRISE SECURITY SERVICES, 

WESTERN CORPORATE FEDERAL 
CREDIT UNION 


self-promotional reasons. But 
Cisco’s evasive actions are 


| likely to attract more hacker 


attention rather than less, said 
Lloyd Hession, chief informa- 
tion security officer at BT Ra- 
dianz, a New York-based net- 
work services firm. “If you 
want to get your company 
onto CNN, this is one way of 
doing it,” Hession said, adding 
that he wants Cisco to provide 
more details on the flaw and 
the exploit described by Lynn. 
“The horse is out of the 


| barn at this point,” Hession 


said. “What we would expect 
from them is no different than 
what we would expect from 
Cisco when any type of new 


Recommended 
Actions 


The FDIC said that financial 
services firms should take 
the following steps: 
= Consider spyware threats 
as part of their risk-assessment 
processes. 


= Enhance their data security 
and Internet-use policies to 
address the risks associated with 
spyware and specify acceptable 
end-user behavior. 


= Expand employee training to 


include information about spyware. 


them to take protective measures 
on their own computers. 


= Evaluate multifactor authen- 
tication methods, which could 
limit identity thieves’ ability to com- 
promise customer accounts. 
helds get left out of corporate 
protection plans, he noted. 


The FDIC warned banks 
that spyware can be a conduit 





Both compa- 

nies agreed 

that further 
research was needed 
to better inform 
customers [of the 
issues involved]. 


REFERRING TO THE NETWORKING 
EQUIPMENT VENDOR AND ISS 


vulnerability is discovered. 
We need a clear and concise 
explanation from them about 
the circumstances under 
which it can be exploited. 
Though Lynn’s presentation 
dealt with an already known 
hole, it provided the hacker 


” 


| community with the knowl- 
| edge needed to exploit it suc- 


cessfully, said Thor Larholm, a 
senior security researcher at 
PivX Solutions Inc. in New- 
port Beach, Calif. “The main 
point of this disclosure is that 
there will be a lot more focus 
on IOS as being an exploitable 
system,” Larholm said. 

Cisco’s actions reek of high- 
handedness, said Bruce 


for hackers to get into their 
systems and collect sensitive 
data. “It is critical that banks 
stay vigilant about the risks 
involved with this malicious 
software and take appropriate 
action so that they and their 
customers do not fall victim to 
it,” Michael Zamorski, director 
of the FDIC’s Division of Su- 
pervision and Consumer Pro- 
tection, said in a statement. 

The guidance from the FDIC 
spells out the risks associated 
with spyware and recommends 
actions that financial institu- 
tions can take to mitigate the 
problem both internally and on 
the computers that online cus- 
tomers use (see box, left). 

For example, the FDIC sug- 
gested the use of multifactor 
end-user authentication tech- 
nologies and said that banks 
should warn customers about 
the risks of using public- 
access computers. 

Jim Hochstatter, vice presi- 
dent of technology at Ulster 
Savings Bank in Kingston, 
NY., said that until a year ago, 
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| Schneier, chief technology of- 


ficer at Counterpane Internet 
Security Inc. in Mountain 
View, Calif. “It’s downright 
scary if you are allowed to ar- 
gue that negative things about 
your company can’t be dis- 
closed,” Schneier said. 

But researchers do need to 
be responsible when making 
disclosures, Hoff said. 

“It’s a slippery slope be- 
tween full disclosure and re- 
sponsible delivery [of infor- 
mation],” he said. “As a con- 


| sumer, I’d like actionable intel- 


ligence as soon as I can get it, 
but I would like to have a solu- 
tion to the problem, not just a 
shrinking [exploit] window.” 

The actions of researchers 
such as Lynn are “reprehensi- 
ble, bordering on the crimi- 
nal,” said Dennis Treece, di- 
rector of corporate security at 
the Massachusetts Port Au- 
thority in Boston. “If he pub- 
lished a paper telling every 
burglar how to compromise a 
certain alarm system or get 
through a certain type of door 
because of some manufactur- 
ing defect, he would be equal- 
ly out of line.” @ 55863 


the bank kept separate net- 


| works for core processing and 


external communications, of- 
fering computer kiosks to em- 
ployees who wanted to surf 
the Web. But with the increase 
in Web-enabled applications 
for customer use, it was in- 
evitable that spyware would 
become a concern, he said. 

Hochstatter said Ulster Sav- 
ings last year outsourced its 
data protection activities to 
Perimeter Internetworking 
Corp. in Milford, Conn. The 
bank uses Perimeter’s e-mail 
protection services and is now 
considering two-factor au- 
thentication for end users. 

Speare added, though, that 
he and many of his industry 
peers are “cringing” at the 
thought of using multiple au- 
thentication factors. “We’re all 
struggling with that,” he said. 
“We don’t want to be in the 
business of supporting tokens 
or digital certificates, because 
we'd have to have a whole sup- 
port infrastructure around 
them.” @ 55853 
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intel and Cingular Wireless are 
proud to co-sponsor this special 
supplement profiling the winners 
of Computerworld’s 2005 “Best 
Practices in Mobile & Wireless” 
Awards Program. 

These innovators stand out as 
business-focused technology lead- 
ers who used real-time mobile and 
wireless technology to create tangi- 
ble, measurable business value. We 
hope that these success stories will 
inspire others to assume leadership 
in their industries by forging wire- 
less links among their employees, 
systems, assets and customers 

Congratulations to the winners 
and those who received honorable 
mentions in this year’s program. 
Thank you to all the IT profession- 
als, public relations firms/ agencies 
and others who participated in the 
program by submitting case studies 
for evaluation. We also acknowl- 
edge and extend special thanks to 
the industry leaders, experts and 
practitioners who served as 
judges. 

This year’s award winners repre- 
sent a variety of industries. Each 
offers proof that the use of wireless 
data has expanded beyond tradi- 
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tional e-mail, messaging, depart- 
mental functions and field service 
applications. These winners have 
transformed business models and 
streamlined core business processes 
while unlocking access to data and 
enhancing the value of business 
information within their organiza- 
tions and enterprises. 

To all readers of this special sup- 
plement, we encourage you to con- 
sider the advantages of wireless 
mobility today. We believe that, 
like the attendees of Computer- 
world’s Mobile & Wireless World 
conference, you will conclude that 
there is a passion for “best prac- 
tices” and tremendous pride associ- 
ated with being recognized for 
successful IT implementations. 

Organizations are deploying 
these solutions because ROI is 
achievable, the opportunity for 
market differentiation is real and 
the cost of falling behind is prohibi- 
tive. Not only are mobile and wire- 
less solutions viable (as seen in the 
examples to follow), but there is a 
competitive advantage for those 
who use them wisely and creative- 
ly. The only limit our imagina- 
tion and commitment. 


LAURA JOHNSON 
DIRECTOR, INDUSTRY 
SOLUTIONS BUSINESS 
MARKETS GROUP, 
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Business Evolution Through 
Mobilizing Field Workers 


The winners in this category exemplify the adoption 
of mobile and wireless strategies in the nontradi- 
tional mobile workforce. They were able to success- 
fully valuate their field workers’ ability to connect 
with corporate applications and data for business in 
a remote environment. As a result, they realized 
increases in efficiency, service enhancement, pro- 
ductivity and bottom line return. 


Winner: Maytag Corporation 
Newton, lowa 


Winner: Saia Motor Freight 
Duluth, Georgia 


Honorable Mention: The ServiceMaster Company 
Downers Grove, Illinois 


Deploying Wireless 


Mobility in the Enterprise 


These winners are distinguished by the ability of 
their IT organizations to map and meet line of busi- 


ness challenges through top-down planning for wire- 
less infrastructure. They developed business process- 


es that exploit mobile and wireless technologies 
while managing and controlling costs. They further 
demonstrated a unified vision which supports multi- 
ple platforms, applications and mobile devices. 


Winner: Cox Communications, Inc. ....... es 8 
Atlanta, Georgia 


Winner: pH Europe Ltd. ................ 9 
Huddersfield, United Kingdom 


Honorable Mention: Staples, Inc. 
Framingham, Massachusetts 


Transforming the “Brick and 
Mortar” of the Enterprise 


The organizations that excelled in this area opened 
new realms of profitability and performance by 
transcending “brick and mortar” limitations. They 
extended the capabilities and productivity of work- 
ers outside the office environment. Moreover, they 
transformed their business models by driving down 
costs and streamlining additional processes. 


Winner: Landstar System, inc. 
Jacksonville, Florida 


Winner: Zipcar 
Cambridge, Massachusetts 


Honorable Mention: Biue Cross Blue Shield 
of Massachusetts 
Boston, Massachusetts 


Managing Cellular Mobile Data 


Winning in this category was dependent upon 
building and managing PDA-based mobile networks 
designed to remain compatible with enterprise 
needs on a long-term basis. This solution includes 
tapping into widespread deployment of nationwide 
carrier networks, selecting appropriate technologies, 
managing and auditing enterprise relationships with 
SLAs, and enforcing policies for the personal use of 
business devices. 


Winner: PMI Mortgage Insurance Company . . 13 
Walnut Creek, California 


Vertical Horizon 


Editorial by Computerworld’s Mark Hall 


BRC yeu ame Ms tt MeL AL 
Editor of Computerworld Custom Publishing, Executive 
Editor of SNW Online and founding Editor of Network World. 


judging criteria and other progra 
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Maytag Corporation 


PCa a 


“We were able to 
extend our enter- 
prise into the 
wireless world, 
which in tum has 
improved produc- 
tivity, profitability 
and most impor- 
tantly has provid- 
ed a better service 
experience for 
our consumers.” 


CORPORATION 


| 


For more than 98 years, Maytag has 
been a major player in the manufactur- 
ing of home appliances. Over the last 
three years, the company realized that 
it needed to change its current service 
business model of servicing only its 
own family of products to servicing 
those of its competitors. Subsequently, 
in moving to an All-Brand service mod- 
el, they recognized the need to move 
from a predominantly cell phone/pa- 
per model to a wireless-based system. 

Maytag recognized four stakeholders 
~ consumers, technicians, clients and 
Maytag — using focus groups to iden- 
tify each of their requirements. 


The Challenge 

Maytag’s requirements included: per- 
formance measurements, service call 
cancellations, and problems related to 
dispatch, inventory and data integrity. 
As a result, the project team focused on 
simplifying current processes. The team 
used the “process over technology” 
approach to streamline the business 
processes before employing the use of 
technology. 


The Solution 

Maytag was able to marry the technolo- 
gy with the process. To test the 
methodology, a proof of concept (POC) 
project was conducted during a 30-day 
period in a market of urban, suburban 
and rural consumers. During the POC, 
the team validated the use of handheld 
devices, printers, credit card readers, 
GPS devices, functional handheld 
applications, and both terrestrial and 
satellite communications. 

The POC provided immediate feed- 
back, both good and bad. Maytag dealt 
with various issues with wireless re- 
mote printing, a credit card application 
challenge, a satellite provider that didn’t 


provide the necessary realtime updates, 
and GPS mapping that was mediocre at 
best. After successfully addressing these 
issues, Maytag expanded into an Opera- 
tional Pilot program for three markets 
across the United States. In the wake of 
these enhancements, Maytag observed 
improvements in technician productivi- 
ty, operating costs and the overall con- 
sumer experience. 

Maytag realized the following key 
benefits from this project: 
#4.5% on-time service delivery increase 
33% service arrival time improvement 
@ 17% in-home repair cycle time 

improvement 
# 200% technician productivity 

improvement over project goal 
50% in-home a ory sales increase 
= A company service quality 

assessment score of 98% approval. 

Maytag Services Director of IT and 
Business Information Officer Craig 
Hansen noted, “By extending our enter- 
prise into the wireless world, we im- 
proved our productivity, profitability 
and most importantly, provided a better 
service experience for our consumers.” 


JEFF MORGAN (LEFT), 
DIRECTOR OF FACTORY SERVICE AND 
CRAIG HANSEN, DIRECTOR OF IT AND 

BUSINESS INFORMATION OFFICER 
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The winners in this category exemplify the adoption of mobile and wirelss strategies in the nontraditional mobile workforce. They were 
able to successfully valuate their field workers’ ability to connect with corporate applications and data for business in a remote environ- 


ment. As a result, they realized increases in efficiency, service enhancement, productivity and bottom line return. 


Saia Motor Freight 


Saia Motor Freight, a $600 million rev- 
enue LTL carrier with a 30-state cover- 
age area and 127-terminal network, re- 
cently implemented a wireless solution 
for its P&D (Pickup and Delivery) Dri- 
vers. The wireless solution was imple- 
mented to improve communications 
and P&D times. 


“Having access 
to realtime data 
for customer 
WTrse Mele) 
improving inter- 
nal processes 
is huge for our 
company.” 


The Challenge 

The challenge was to provide a cost- 
effective solution for realtime dispatch 
and customer service. 

Saia has been under market pressure 
to provide more timely 
POD (Proof of Delivery) 
information to cus- 
tomers who utilize the 
information to improve 
their accounts receiv- 
able function. This in- 
formation includes the 
time of delivery and the 
person who signed the 
receipt of the freight de- 
livery. In the past, this 
could take several hours 
or days to provide. 

Saia was also looking for technologi- 
cal developments that would improve 
communications between drivers and 
terminals, and would lead to enhanced 
coordination of freight pickup and de- 
livery. Prior to the wireless solution, co- 
ordinating driver pickups and gather- 
ing tonnage information was a manual 
and time-consuming process. 


The Solution 

The solution called for cellular phones 

and a telecommunications carrier. 
Since regular and timely voice com- 

munications with drivers is an integral 

part of the company business structure, 

and because drivers already have cell 


MOTOR FREIGHT INC. phones, the plan was to build upon the 
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FROM LEFT TO RIGHT: 
ROHN FLANDERS, DIRECTOR OF 
IT, DAN GIESEN, DIRECTOR OF 
OPERATIONS, LOU STOVER, 
ATLANTA DISPATCHER 


7 


existing communications infrastructure. 
A GUI front-end was developed inter- 
nally for use by the dispatchers with a 
WAP solution via a web server for driv- 
ers. All components connect directly to 
the Saia host AS/400 system. 

Pickups are entered via the terminal, 
centralized customer service, EDI or the 
Saia website, and appear in real time on 
the dispatcher’s screen. Dispatchers can 
then point and click to assign a specific 
driver to the pickup. The driver is noti- 
fied on his cellular phone that he has a 
new pickup and receives all the perti- 
nent information to review. 

When the driver makes the pickup 
and delivery at the customer location, 
the information is entered into the phone 
via a user-friendly “Pick and Choose” 
option. The customer information is im- 
mediately updated in the 
AS/400 system. 

Saia saw immediate 
benefits from providing 
delivery information to 
customers within min- 
utes of delivery. This in- 
formation is available to 
Saia customers in real 
time via the Saia website 
or through a call toa 
customer service repre- 
sentative. A reduction in 
clerical costs was imme- 
diately seen due to the driver entering 
sufficient shipping information to cre- 
ate a “skeleton” bill. A night biller who 
compares the bills of lading to the driv- 
er-entered bill then enters complete 
billing information and completes the 
billing process. 

Previously, night terminal or central 
office employees billed these shipments 
manually at a premium of time and 
expense. 

Saia saw additional benefits for its 
linehaul group by having faster and 
more accurate tonnage pickup and des- 
tination data. This ensures better plan- 
ning and a potential reduction of night 
shipping schedules to move the freight 
to its destination. & 
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Cox Communications, Inc. 


“The Enterprise is 
continuing to har- 
vest the benefits 
provided by our 
secured wireless 
al este 
infrastructure. 
Tria ellie 
include expanding 
access beyond 
work dispatch to 
additional corporate 
applications and 
adoption by a 
Tela iV 
mobile workers.” 


COX 


COMMUNICATIONS 


Your Friend in the Digital Agee 


Cox Communications is devoted to cre- 
ating the best customer experience pos- 
sible. They found that customer satis- 
faction largely depends on Cox Field 
Operations’ ability to quickly respond 
to customer needs through effective 
“truck rolls” — delivering the right serv- 
ice to a customer by the right technician 
at the right time. To help drive field 
service efficiency, Cox uses a workforce 
administration (WFA) system that as- 
signs work orders to field service repre- 
sentatives based on a number of attrib- 
utes including skills, availability and 
proximity. Approximately 90% of the 
work orders are routed through the sys- 
tem, with only 10% of orders requiring 
manual processing. 

Cox Field Operations’ WFA system 
capabilities include work order updat- 
ing/closing, customer equipment acti- 
vation, service modification, database 
reporting, GPS tracking, and wireless 
communications. By providing these 
tools for their mobile workforce, Cox 
reacts more quickly to customer needs, 
driving up customer satisfacti 


The Challenge 

Cox needed to provide seamless and 
secure field connectivity so mobile 
service representatives could receive 
dispatch information, regardless of 
their location. Cox also wanted to pro- 
vide pervasive access to a variety of 
back-office administrative tools and the 
ability to remotely manage mobile 
worker devices and applications. 

To achieve the needed coverage, Cox 
had migrated the majority of communi- 
cations channels from a private radio 
network to various public carrier net- 
works for wide area coverage, supple- 
mented by private 802.11 networks to 
provide local access to bandwidth-in- 
tensive applications and to support de- 


vice and application management. In 
order to enhance solution efficiency, 
Cox wanted all security and network 
connectivity to be managed without 
user intervention. Additionally, Cox 
wanted to extend the communication 
capability to contractors and workers in 
both wireline and wireless environ- 
ments. 


The Solution 
Cox chose a system that creates seam- 
less, secure VPN access to network 
resources and provides an always-on 
connection as users roam between 
wired, wireless LAN and wireless wide 
area networks. It also operates on the 
variety of different mobile computing 
devices used by Cox, including note- 
books, tablets and handheld computers. 
This solution successfully enabled 
increased productivity for field service 
workers, and its innate flexibility and 
scalability will allow Cox to extend its 
functionality to additional business 
groups 

By deploying their new solution, Cox 
has been able to create a more produc- 
tive un-tethered communication experi- 
ence for its mobile workforce. 


FROM LEFT TO RIGHT: AL BRIGGS, DIRECTOR, 
MARK MANGLICMOT, APPLICATION ENGI- 
NEER, JIM JONES, SENIOR PROJECT MANAG- 
ER, SUNDEEP SUNNY, PROJECT MANAGER, 
MICHAEL KOVASH, SENIOR PROJECT MANAG- 
ER, JOHN SMILEY, EXECUTIVE DIRECTOR, 
JASON DZICZKOWSKI, PROJECT MANAGER 
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These winners are distinguished by the ability of their IT organizations to map and meet line of business challenges through top-down 
planning for wireless infrastructure. They developed business processes that exploit mobile and wireless technologies while managing 
CU ee CM Mme cme MMU MVM GCM CME CMelee) (elle UM Meuse 


pH Europe Ltd. 


“Knowing the 
whereabouts of 
every container 
at any time 
allows us to 
respond to cus- 
MIT LILO 
with unprece- 
dented accuracy 
and efficiency.” 


pH Europe Ltd. is well known for a 
portfolio of transport container services 
that a growing roster of customers em- 
ploy to deliver products ranging from 
chemicals and pharmaceuticals to food- 
stuffs and industrial parts. Customers 
including GSK, Sun Chemical, Avecia, 
Johnson Matthey, AllessaChemie, Meth- 
ode and AH Marks rely on pH Eu- 
rope’s mission-critical transportation, 
storage and tracking services. 


The Challenge 

Two years ago, the company began 
researching RFID and GPS tracking as a 
way to optimize their supply chain 
processes and ensure that rental assets 
were prepared for service and quickly 
deployed. During the preliminary plan- 
ning phase, it was thought that a GPS 
solution might provide the necessary 
location functionality for the project, 
but it was quickly determined that GPS 
alone would prove far too expensive in 
the long run. 

The fact that GPS asset tags would 
also need their batteries recharged ona 
frequent basis would not allow a rea- 
sonable TCO. The evolving realization 
was that a hybrid RFID/cellular/GPS 
solution featuring long-range active 
RFID technology at the container level, 
and GPS/ cellular at the truck level, 
would need to be defined. In addition, 
the system would need to be flexible 
enough to incorporate tomorrow’s 
RFID, celiular, remote sensor and mesh 
network data. It would also need to be 
secure. 


The Solution 

By utilizing a data management plat- 
form, a systems integrator was able to 
configure a leading-edge solution that 
increases visibility into the company’s 
container fleet. The solution features 


active RFID asset tags and readers 
operating at 433 MHz, an on-site 802.11 
network, and integration with truck- 
based GPS and cellular data platforms. 
Today, pH Europe puts industrial con- 
tainers into service at lightning speed, 
and can follow them as they interface 
with the supply chains of their cus- 
tomers. 

The benefits realized over the last 
eight months by integrating RFID loca- 
tion and tracking to enhance supply 
chain visibility are many. Through real- 
time visibility of what is currently 
available in the warehouse and easy ac- 
cess to customer demand and trending 
data enabled by RFID, pH Europe is 
now able to plan ahead for the utiliza- 
tion of a particular asset and build 
schedules for its use. 

Beyond the optimization of their in- 
ternal wireless asset tracking system, 
pH Europe now can offer their own 
customers an “asset tracking service” 
whereby they track and monitor mis- 
sion-critical assets as an additional rev- 
enue stream. Other internal benefits in- 
clude: improved asset utilization, pric- 
ing flexibility and activity-based billing, 
reduced labor expenditures, reduced 
breakage and loss, improved service 
quality, reduced transportation costs, 
and better understanding of the cus- 
tomer and their operations. M 


FROM LEFT TO RIGHT: JACK CLEGHORN, 
SALES AND MARKETING DIRECTOR, 
IVELINA IVANOVA, PROJECTS MANAGER, 
AWARD PRESENTER, PAT HINDLEY, DIRECTOR, 
ANDREW BLACKWELL, DIRECTOR 





Special Advertising Supplement 


Landstar 
System, 


aa Trem e UU e gs 
like these enable 
Landstar to attract 
and retain small 
business owners 
and increase finan- 
cial growth without 
adding employees.” 


@ 
the road to success 


LANDSTAR 


Inc. 


Since 1999, Landstar System, Inc. has 
delivered an average 27 percent return 
on capital. A major part of that achieve- 
ment is the non-asset-based transporta- 
tion provider's success in leveraging 
wireless technology. 


The Challenge 

Landstar’s business model combines 
wireless Internet and other technolo- 
gies to support approximately 10,000 
small business owners who provide 
safe, reliable truckload transportation 
services to various shippers throughout 
the world. Independent truck owner- 
operators and sales agents earn a per- 
centage of the revenue generated from 
each load they haul. Landstar’s success 
is contingent upon the success of these 
small business owners, and the compa- 
ny works diligently to provide them 
with the tools to compete in today’s 
tough transportation industry. 


The Solution 
In September 2000, Landstar launched 
a first-of-its-kind business-to-business 
cellular wireless data service in the 
North American transportation indus- 
try. Through cell phones and other 
web-enabled wireless 
devices, truck operators 
were able to access the 
company’s freight board 
from the cabs of their 
trucks. 

Truckers can update 
their load status using 
Landstar’s natural lan- 
guage speech-enabled 
interactive voice response 
(IVR) system. The text-to- 
speech application commu- 


A LANDSTAR SERVICE 
REPRESENTATIVE USING 
A WIRELESS DEVICE 


nicates user-specific information via 
cell phone, including reminders regard- 
ing equipment inspections, license 
plate renewals and other critical dead- 
lines. More than 1,000 sales agents send 
freight data to truck operators with a 
single click. Through text-to-speech 
capabilities truckers receive automated 
detailed voice messages regarding 
money-making freight opportunities on 
their cell phones. 

Landstar monitors emerging tech- 
nologies and appreciates WI-FI’s poten- 
tial as a significant player in the wire- 
less arena. Last year, the company 
began installing free WI-FI cards in 
truckers’ laptops and made the com- 
mitment to light up WI-FI hot spots at 
its remote orientation centers through- 
out the country. Those centers serve as 
safe havens for Landstar contractors, 
where in addition to using free laundry 
facilities and showers, truckers can 
now e-mail their families and friends, 
search for loads and research fuel dis- 
counts from their cab bunks at no 
charge. 

The company also launched a mobile 
wireless document scanning program 
that enables laptop or home PC users 
to inexpensively scan in their paper- 
work. Landstar benefits from the reduc- 
tion in personnel required to scan and 
process these images. 

Landstar’s mobile field staff uses 
handheld devices to access e-mail, 
resulting in improved productivity and 
communication with agents and cus- 
tomers. Landstar converted 
its traditional PBX phone 
systems at orientation cen- 
ters and regional offices to 
VOIP, leveraging its invest- 
ment in VOIP systems. 

Landstar’s pioneering 
approach to information 
dissemination has tur- 
bocharged its business 
model, making the firm a 
leader in the transportation 
industry. @ 
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The organizations that excelled in this area opened new realms of profitability and performance by transcending “brick and 
mortar” limitations. They extended the capabilities and productivity of workers outside the office environment. Moreover, 
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“From backoffice 
maintenance to the 
superior member 
Cyd aT ei asa 
Zipcar, we have 
created a technolo- 
PAA tar ay 
easier to use than 
EUW AU Mm slireley (at 
us to bring 
car-sharing to 
the masses.” 


Zipear is a car-sharing service based in 
Cambridge, Massachusetts. This inno- 
vative, membership-based service uses 
wireless technology to remotely m 

tor its assets and serve its customers. 
Hourly fees are as little as $8.50 per 
hour, and include gasoline, parking, 
XM Satellite Radio and even insurance. 
Zipcar technology is now being used in 
eight states and 21 North American 
cities. Its unique approach to an under- 
served consumer need has become a 
marketing success story. The company 
is also serving an increasing number of 
businesses who find the service an eco- 
nomical alternative to their own fleet or 
to using traditional car rentals. 


The Challenge 

In order to meet its 
goals, Zipcar wanted 
to be able to remote- 
ly monitor vehicle 
use and status in an 
effort to protect its 
investment in vehi- 
cles. That meant 
building a reliable 
and secure system to 
control and monitor 
member access to 
Zipcar vehicles at the point of need. It 
also meant delivering on the promise 
that Zipcars are self-service, fully auto- 
mated and very convenient to use. 

It was critical that the company be 
able to accept member reservations and 
transmit data in real time to maximize 
the service’s unique value, revenue and 
customer loyalty. Toward that end, Zip- 
car built a flexible system that would 
easily scale to new markets with in- 
creased demand and locations. 


The Solution 

Zipcar administers everything from its 
Cambridge headquarters. Members can 
reserve a vehicle either online or by 
telephone. A proprietary embedded 
system installed in all Zipcar vehicles 
combines a proximity card reader and 


CARL TASHIAN AND JONATHAN WOLFE, 
SENIOR ENGINEERS 


| 
| 
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modem to receive reservations informa- 
tion 

The Zipcar reservation process is very 
secure and reliable because every mem- 
ber is issued a unique “Zipcard” upon 
joining. This Zipcard is authorized for 
use via a data network when a reserva- 
tion is made. Zipcar members can re- 
serve an available car near them, choos- 
ing from cars and locations within 
walking distance from their location. 
The Zipcard authorization process can 
occur within seconds of making a reser- 
vation. Members go to the location of 
the car they’ ve reserved and hold their 
Zipcard in front of a proximity card 
reader in the car. Their membership and 
reservation is validat- 
ed, and only then 
does the system un- 
lock the car door and 
enable the ignition. 

Members use the 
car, returning it to the 
same location, ready 
for the next reserva- 
tion. Usage informa- 
tion is sent to Zipcar’s 
servers and the mem- 
ber’s account is auto- 
matically charged. 

Zipcar’s unique business model has 
been successfully launched and has 
garnered national media attention, 
which has lead to membership and rev- 
enues doubling in 2004. The company 
is pleased to report that Zipcar’s reli- 
able and secure vehicle access and 
monitoring systems have handled hun- 
dreds of thousands of self-service reser- 
vations. 

In addition, accurate, timely vehicle 
use information has resulted in efficient 
revenue forecasting and payment col- 
lections. This good news on the finan- 
cial front looks even better in light of 
the fact that Zipcar has reported that 
39%-plus of members are so pleased 
with their service that they have either 
sold their cars or decided not to buy 
one. @ 
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Winning in this category was dependent upon building and managing PDA-based mobile networks designed to remain 
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PMI Mortgage Insurance Co. 


“Working together, 
our sales and IT 
teams created a 
Tet (so) 
ment that allows 
our Sales force to 
respond instantly, 
wherever they are. 
Customer support 
and feedback are 
at record levels 
of satisfaction as 
a result.” 


The Challenge 

PMI Mortgage Insurance Co. wanted to 
provide better customer service inter- 
nally (better tools and support to the 
sales force) and externally (to increase 
business and, ultimately, revenue), 
while maintaining costs and controlling 
security. 

Their vision was to standardize tech- 
nology while providing security to the 
organization and building a platform 
that could be expanded as business 
needs changed and sophistication of 
the workforce increased. The ultimate 
goal was providing a wireless environ- 
ment where the company could com- 
municate with their customers and re- 
port on them, wherever they are. 

However, their ability to operate 
technology varied greatly within their 
group. 


The Solution 

PMI introduced and 
integrated a CRM 
solution and wireless 
communications sys- 
tem. The project could 
only be successful 
with IT and sales 
working together with 
the support of senior 
management. 

They began a com- 
bined IT and Sales 
strategy to introduce laptops and a 
CRM solution. Over the course of eight 
weeks they brought every sales repre- 
sentative into headquarters and provid- 
ed computer training and CRM orienta- 
tion. They standardized the equipment 
and provided a secure network for the 
sales team to access company data. 

The next step was wireless communi- 
cation and cost controls. The handheld 
devices provided the means to get 
there. They negotiated a company rate 


| 
| 
| 
| 
| 
| 


STANDING FROM LEFT TO RIGHT: 
LAURA AMATO, DELAND MAYNARD, 
ERIK VESNESKI, STEPHANIE CORNS 

BOTTOM FROM LEFT TO RIGHT: 
CARL TAM, DAVID LIM 


| 
| 


13 


for data and voice plans. They also 
could control ac and devised a way 
to “zap” a device if lost or stolen. Fur- 
ther, with the software they employed, 
they could allow mobile, wireless ac- 
cess to their CRM solution. 

The result was a completely wireless 
platform that allowed PMI to better 
communicate internally and externally 
while reducing costs. As for the proof, 
with one bill, they can manage the costs 
of telecommunications and monitor us- 
age of company property. The cost of 
deploying the handheld devices was 
cheaper than deploying a cell phone 
and separate PDA to all their sales rep- 
resentatives. The savings was several 
tens of thousands of dollars 

PMI can now better communicate 
with its customers. In the past, sales 
reps could only re- 
spond to e-mail at 
night, on their own 
computers. Often, the 
delay could cost the 
company business, as 
a customer would call 
someone else if they 
did not get a re- 
sponse. Sales can now 
respond instantly. 
Customer support 
and feedback are at 
record levels of satis- 
faction. Increased pro- 
duction with some of their biggest 
lenders is attributable to better service 
levels. This has increased premiums 
and had a direct impact on top line 
growth. 

In summary, PMI customer manage- 
ment and information ha 
they know more about their customers. 
Working together, sales and IT have 
affected the top line and expense line, 
ultimately improving their bottom 


line. & 


increased — 
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Over- 
worked 
ClOs 
should 
refuse to 
support 
end users’ 


MARK HALL IS A , 
wireless 
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are for a specific busi- 
ness requirement. And 
saving hotshot execu- 
tives a few minutes of 
their precious time so 
they can thumb their 
way through e-mail 
while waiting in air- 
port security lines 
isn’t a business 
requirement. 


But don’t start practicing polite but 
firm ways to say no just yet. 
That's because the wireless indus- 
try will be unleashing in the com- 
ing months and years a slew of 
vertically focused products de- 
signed to deliver true business 
value and not just gee-whiz con- 
venience. 

As a result, handheld wireless 
devices have the potential to 
shake the foundation of IT much 


| 
| 


Vertical Horizon 


like PCs did so long ago. Just as the PC 
disrupted corporate IT by appealing to 
broad numbers of workers with hori- 
zontal software like Excel and Word, 
wireless systems will similarly discom- 
bobulate your department by luring 
end users with claims that they can 
solve business-specific application 
needs. 

This means you overworked CIOs 
are doomed to deal with wireless de- 
vice proliferation. “No” won't be in 
your vocabulary. And you'll be hearing 
from your line-of-business peers about 
the ROI of the wireless applications 
they want. Real soon, I suspect, if you 
haven't already. 

According to The Insight Research 
Corp. in Boonton, N_J., eight vertical 
markets — utilities, health care, trans- 
portation, communications, wholesale 
trade, retail trade, durable manufactur- 
ing and financial services — are poised 

to spend $7.6 billion in 2006 on wire- 

less data services alone. That 
figure doesn’t include the bil- 
lions of dollars spent on the 
hardware and software de- 
signed for those markets. Nor 
does it include the billions 
more you'll spend in your col- 
lective budgets to secure and sup- 
port these myriad devices. 

If the handhelds on your hori- 
zon merely meant more expense, 
you wouldn’t have to worry. But 
they’re much worse. 

You'll be confronting the de- 
ployment and management of 
complex, n-tier applications run- 
ning on a mix of largely unex- 
plored operating systems. Com- 
pounding the problem is the end- 





Top Challenges 
The biggest management and 
technical challenges in mobile/ 

wireless projects: 


Base: 522 IT decision-makers at North Ameri- 
can companies; multiple responses allowed 


RCE FRAMINGHAM, MA ER 


less array of hardware configurations 
and suppliers that you'll get to choose 
from. Plus, you'll have to think very 
carefully about the added information- 
security burdens. You'll need to attract 
new people with wireless skills or train 
existing staff on new stuff. And you’l! 
have to cull through an untested crop 
of consultants to find the gems w 
know your business and wireless tech- 
nolog 

This will be much, much more than 
just ordering instant messaging for 
your sales force from your cell phone 
service provider. It’s a daunting 
process, one that might send many a 
current CIO into early retirement. But 
hold on. 

“Don’t panic,” soothes Michael Mace, 
chief competitive officer at PalmSource 
in Sunnyvale, Calif. “You don’t need a 
big wireless strategy now.” 

He says wireless technology is mov- 
ing at such a fast pace that it would be 
unwise to cast your wireless policy in 
stone today. “Let it evolve,” he says. 

Mace, whose company develops the 


| 
| 
| 
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Palm operating system for many differ- 
ent wireless handheld makers, thinks 
you should “pick the low-hanging 
fruit” inside your company. That means 
driving wireless deployment programs 
that do what everybody knows IT does 
best: automate processes and eliminate 
paper. Field service staffers, claims 
Mace, are among your best candidates 
for wireless tools. Look to buy or devel- 
op wireless applications that improve 
the productivity of expensive workers 
in the field, reduce their data-entry er- 
rors and cut process costs, Mace says. 
It’s an easy way to become a hero in- 
side the company. 

Brian DeMuy agrees. Field services is 
an ideal place for wireless applications. 
But “winning user adoption is huge,” 
adds the manager of business develop- 
ment for new markets at Mobile Data 
Solutions in Richmond, British Colum- 
bia. Think through how those end users 
work. Will they be using devices inside 
their vehicles or in all kinds of weather? 
Do they need a ruggedized unit? The 
hardware’s form factor may be j 
important as the softw 


Customer Satisfaction 


Users rated their satisfaction with 
the following mobile/wireless tech- 
nology and vendor characteristics: 


Base: 464 IT decision-makers at North Ameri- 
can companies; multiple responses allowed 
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Selection Criteria 
Enterprise users say these 
are the most important selection 
criteria for mobile/wireless 
technology vendors: 


Base: 519 IT decision-makers at North Ameri- 
can companies; multiple responses allowed 


RAM 


Muy warns. In most cases, the field 
service staff won’t be nimble-thumbed 
teenagers. Make sure the data-entry 
process is dead simple. 

One more bit of advice from DeMuy: 
If you support union workers in the 
field, don’t try to bypass them. Get the 
union on board and involved in the de- 
vice-selection process. 

Training will be key, too, agree De- 
Muy and Mace. Whether you support 
callous-handed journeymen working 
atop telephone poles in ice stor 
soft-handed heart surgeons, it’s | 
that whatever wireless handheld device 
and application you give them will be a 
brand-new experience. 

You won't be the only person suffer- 
ing through the upheaval wireless tech- 
nology brings. End users will need a lot 
of hand-holding for their handhelds. Be 
kind. @ 
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have to draw them in. So their vision 
is constant, but the message keeps 
changing. 

Let’s think about an architect who is 
trying to break down the old “I have a 
project, let’s just get on with it” think- 
ing in his company: 

® To the executive who controls the 
money, he talks about how to get that 
project done in a way that delivers 
more of a return over time. 

@ To the leaders of the work area, 
he talks about making things easier so 
that they can do their work. (Depend- 
ing on the type of work, creativity or 
analysis may be key words.) 

& To the development team, he talks 
about how what he is doing will open 
doors for them. 

@ To the other architects, he talks 
about things such as “taking your wins 
when you can get them” and “let’s get 
some of it today; we’ll get the rest of it 
later.” (Remember, the perfect solution 
is the enemy of the good solution — 

. the one you can actually get accom- 
plished now.) 

One vision — that of a proper, order- 
ly, structured enterprise business ar- 
chitecture with organized information 
and well-designed solutions — is com- 
municated and “sold” in many ways. 
Oddly enough, none of the achievers 
I’ve talked to mentioned “architecture” 
directly (at least in the early days). 
Each delivered messages tailored to 
give recipients something to grab on to 
that they were comfortable with — 
money, work, process, technical com- 
petence — and something they could 
sign up for — results. 

If “they” don’t get it, what are you 
doing to lead them? @ 55779 
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IT Workers 
Confront 
Job Shock’ 


HIRTY-FIVE years ago, 

my former boss Alvin 

Toffler coined the term 
future shock to describe the 
shattering stress and disorien- 
tation experienced by individuals 
when they are subjected to too much 
change in too short a time. While 
working on a multiyear project exam- 
ining the future of IT work, research- 


OPINION 


ers at the IT Leadership 
Academy discovered a 
related concept — “job 
shock,” the vocational ver- 
tigo IT professionals are 
just now beginning to ex- 
perience as their careers 
and developmental aspira- 
tions slam full throttle into 
a radically changed and 
rapidly transforming world 
of IT work. 
The first thing the re- 
search revealed is that IT 
work and IT jobs aren’t syn- 
onyms. The work of IT is 
increasing — more bits are being 
moved, manipulated, transformed, 
stored, personalized and protected. 
They are sent to more places, to more 
people and for more purposes than 
ever before. This fact hasn’t made it 
into public consciousness. There is 
more work to do. But there may not 
be more jobs to handle that work. 
Any B-school professor can recount 
hundreds of stories about why stu- 
dents are in class and not in the work- 
force. It’s not unusual to hear things 
like, “Four years ago, I was making 
$180,000 designing Web sites. That 
work is now being done in India.” 
Truth be told, that work is probably 
being done by users themselves with 


AMD Users Rush to 





| municating with each other. Each 
| core has its own separate cache 


the aid of smart machines. 
One of the major transfor- 
mations taking place in the 
IT industry is automation. 
IT work that used to have 
IT jobs attached to it is 
now being automated and 
done by the end user. 
Laura Tyson, former 
dean of the Haas School of 
Business at the University 
of California, Berkeley, and 
former chairman of the 
Council of Economic Ad- 
visers during the Clinton 
administration, is always 


| quick to remind the “antimachine” 
| people among us that the invention 
| of the automobile eliminated thou- 
| 


sands of jobs in the buggy industry 
but created even more jobs in the 
fledgling auto industry. 

That’s historically true, and Jeremy 
Rifkin, author of The End of Work, 
agrees that “the Information Age will 
create many new products and ser- 
vices.” But, he adds, “unlike the past, 
however, when mass labor was re- 
quired to produce these goods, in the 
future, they will be churned out in 
nearly workerless factories and be 
marketed by nearly virtual companies.’ 
This is a very real worry. 

Serious-minded and very smart 


. 


Encouraged by 
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future-thinkers are pondering the 
questions: What if paid IT employ- 
ment was to steadily disappear? What 
would become of the men and women 
for whom such employment, especially 
good jobs, was a central organizing ele- 
ment in their lives? 

If you wanted to continue to feed 
yourself, you'd need to do three things: 
1. Network with the people in your 

local economy who best understand 


the trends and current economic 
| “rents” associated with a given set of 
| skills — the IT staffing firms. They 
| have great data and would love to talk 
| to you. 


2. Understand the next three strate- 
gic steps your organization is going to 


| make, and build deep personal rela- 
tionships with the executive platoons 
| that are going to drive those initiatives. 


3. Get yourself trained and educated. 
You will face pressure from ma- 


| chines getting smarter, similar-skilled 


global labor alternatives getting cheap- 
er and executives paying less attention 


| (if that is possible). Knowledge and 
| networking will help you through the 


trauma of job shock. @ 55756 


WANT OUR OPINION? 


More columnists and links to archives of previous 
columns are on our Web site 


www.computerworld.com/columns 


goes bad? | change laptops only 
because of hard drive failure, usual- 





Vendor’s Defense 


"VE BEEN on AMD for four years 
j now. My Athlon 1400 still outper- 
forms the lower-end Pentium 4s. 
Don Tennant's article “AMD: All My 


suspicions that I've had for the past 
two years. 
Intel has never played by the 


fated Pentium 4, yet in benchmark- 
ing tests, the Xeon is better for al- 
most everything users want to do. 
Intel was the first to have dual dies 
on the processor. 

AMD was the first to have dual- 
core. Furthermore, AMD learned 


history of multiprocessor comput- 
ing. In the Power Mac G5, the two 
processors, though they were sepa- 
rate, were very closely tied. Each 
could access the other chip's 
cache. AMD took this notion a step 
further. The two cores in an AMD 
chip are actually capable of com- 


and memory. Intel cut corners while 
AMD took an extra month and deliv- 


| ereda product that was what it said 
| it was: dual-core nirvana. 


| Chris Miller 
Disgust” [QuickLink 55310] mirrors 


| Lead programmer, 


Firestorm Development 


| Group International, 
| Pleasanton, Calif, 
rules. It is desperately pushing its ill- | 


lordsauronthegreat@gmail.com 


CAN readily agree with the first 
two things that anger Tennant, 
but to say that it is the victim's fault 


| for being beat up by the bully is 

| ridiculous. AMD never had the re- 
| sources to outmarket Intel, and no 
from Apple's long and distinguished | 
| scope would have changed Intel's 

| direct assault on its customers’ bot- 


| 
| 
| 


degree of marketing within AMD's 


tom lines. Do you really believe that 
Gateway CEO Ted Waitt would have 
said, “Hell no, damn the bottom line, 
| want AMD!” Not likely. 

Tom Cook 

Analyst, Thomasville, N.C. 





Open-Source Effort 


T WAS really encouraging to read 
the Security Manager's Journal 


| “Eyeing an Opening for Open- 


Source” [QuickLink 55015]. | have 


| Often fought for embracing open- 
| source where integration is not as 


important as conformity to stan- 
dards. Good luck to C.J. Kelly in her 
projects, and this will definitely mo- 
tivate me to keep up the fight. 
Femi Ogundimu 

Atlanta, 


| femialpha@gmail.com 


| Hard Drives Are 
| The Weakest Link 


S AN AVID laptop user, | have 
seen that what really fails on 


| laptops is the hard drive. Has Sea- 
| gate managed to make its hard 


drives unkillable (“Seagate Preps 
Hard-Disk Encryption Technology,” 
QuickLink a6560]? If not, then 
what do we do when the hard drive 





ly a year to a year and a half after 
purchase. At that point, | get a 
brand-new computer and send the 


| hard drive out to be recovered. This 


new security technology is no good 
if it is self-contained and unrecover- 


| able. It would have been better to 
| have a software portion of the tech- 
| nology that is hardware-independent. 
| David Somner 

Hollywood, Fla. 


| COMPUTERWORLD welcomes 
| comments from its readers. Letters 


will be edited for brevity and clarity 


| They should be addressed to 
| Jamie Eckle, letters editor, Com- 


puterworld, PO Box 9171, 1 Speen 


| Street, Framingham, Mass. 01701 
| Fax: (508) 879-4843. E-mail 


letters@computerworld.com. 
Include an address and phone 
number for immediate verification 


For more letters on these and 
other topics, go to 


| www.computerworld.com/letters 
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FUTURE WATCH 

Thanks for the 

(Future) Memories 

Technologies now in research labs could 
eventually replace conventional com- 
puter memory architectures. One possi- 
bility: do-everything memories. Page 25 
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The U.S. electric 
grid is still years away 
from being intelligent 
enough to prevent 
blackouts and other dis- 
ruptions. But there are 
existing and emerging 
technologies that can 
help it to repair itself. 
BY THOMAS HOFFMAN 


HE AUGUST 2003 black- 
out that left nearly 50 
million people without 
electricity in much of 
the Northeastern U.S. 
and the Canadian prov- 
ince of Ontario did have at least one 
positive effect: It pushed the North 
American power industry to work hard- 
er to create a self-healing electric grid. 

Problem is, the distribution grid 
that connects dozens of utilities and 
regional transmission organizations 
(RTO) with residential and commercial 
customers “is almost nowhere near” 
self-healing status, says Doug Fitchett, 
distribution research and development 
program manager at American Electric 
Power Co. in Columbus, Ohio. 

“Think about your personal comput- 
er and the Internet. If your computer 
malfunctions while surfing the Net, 
you don’t bring the World Wide Web 
to its knees,” says Tim Healy, chairman 
and CEO of EnerNOC Inc., a Boston- 
based provider of demand response 
technologies used by the power indus- 


SECURITY MANAGER’S JOURNAL 
User’s End Run Around 

VPN Leads to New Push 

A worm crawls into the network when 
an employee accesses the VPN improp- 
erly. Now Mathias Thurman has to fig- 
ure out how to avoid a repeat. Page 29 


MARIA RENDON 
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OPINION 

A Convert With a 
Crush on His Mac 
Douglas Schweitzer cele- 
brates his second (very 
happy) anniversary as a 
Macintosh user. Page 30 


try (see box, bottom of page 24). “Simi- 
larly, if you hit the wrong key at your 
office and your screen turns blue and 
freezes your system, you don’t usually 
cause the rest of the office or your 
local-area network to grind to a halt.” 

But it’s a different scenario with the 
nation’s nonadaptive electric network, 
which is prone to a cascade of prob- 
lems when one critical component, 
such as a transformer, fails, says Healy. 

“Td venture to say that we’re 5% to 
10% of the way there, but not as the re- 
sult of one centralized orchestrated ef- 
fort,” says Zarko Sumic, an analyst at 
Gartner Inc. Current technologies, such 
as software algorithms used to identify 
equipment failures and then react to 
them, could help the electric industry 
get about halfway toward achieving a 
self-healing grid, Sumic adds. 

The management of the nation’s elec 
tric grid “is largely still done at the hu- 
man level,” says Ron Ambrosio, research 
manager for the energy and utility indus- 
try at IBM. 

Ambrosio and other industry experts 
say a variety of existing and emerging 
technologies could go a long way toward 
helping the U.S. develop a self-healing 
electric grid. They include software 
that could be used to examine patterns 
of electrical use to help predict de- 
mand; intelligent sensors that could be 
installed on transformers and other 
components to detect and report on 
equipment problems; and systems that 
could be used during peak demand pe- 
riods to notify industrial customers 
that they should curtail their use of 
electricity. 

But there are several technical and 
business factors that are impeding 

Continued on page 24 
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progress toward a more reliable grid, 
say Fitchett and other industry execu- 
tives. For starters, the electric industry 
needs a stable communications back- 
bone so that relays and other devices 
on the grid that sense problems like 
generation overloads can communi- 
cate more effectively and reliably with 
one another. 

The current communications infra- 
structure used by the U.S. electric in- 
dustry is multilayered. RTOs that oper- 
ate regional grids each run primary and 
backup voice and data networks both 
within their regions and between other 
RTOs and themselves, says Michael 
Bryson, manager of transmission at 
Valley Forge, Pa.-based PJM Intercon- 
nection LLC. PJM is an RTO that sup- 
ports 51 million people in 13 Eastern 
states and the District of Columbia. 

In addition, many utilities have im- 
plemented their own private data net- 
works so that in the event of any dis- 
ruptions to public networks, “there’s 
still communications within the elec- 
tric industry,” says Bryson. In 2000, for 
example, PJM implemented PJMnet, a 
private frame-relay network that car- 
ries the bulk of its computer data and 
some of its voice support. PJM uses 
public data networks as a backup to 
PJMnet, he says. 

Besides concerns about the reliabili- 
ty of public data networks, utilities also 
have security issues to contend with. 
As power companies begin to install 
intelligent sensors on transformers and 
other pieces of equipment to commu- 
nicate information about outages and 
other problems using public networks, 
systems become more vulnerable to 
cyberterrorists, notes Bryson. 

The most secure form of communi- 
cations involves fiber-optic technolo- 
gy. But it’s expensive — it can cost a 
$20,000 to $30,000 per mile to connect 
electric substations with a control cen- 
ter, “and some of our stations are 40, 
50 miles apart,” says Fitchett. Besides, 
there’s a reluctance among utilities to 
invest in fiber optics, since there isn’t a 


| clear return on investment, he adds. 


| have reliability and security shortcom- 
| ings, says Fitchett. 





| hybrid system, like a Wi-Max to a mesh 
| network of 800 MHz — maybe even 
| some power line technologies,” such as | 


| and-subscribe communications system 
| over the next five to 10 years. Such sys- 
| tems are more efficient than IP-based 

| networks, since utilities that subscribe 


| power outages only after customers 





| ity is flowing to everyone’s homes,” 


Relay Rewind 


When the August 2003 blackout began, 
there was a cascading effect on other utili- 
ties and RTOs. But one RTO that was able 
to insulate most of its 51 million customers 
ESE eee tre Leg 
large part to 20-to-30-year-old relays de- 
CMMI CN Ce(Onrlme Ce 

PJM serves customers from North Car- 
olina to New Jersey and as far west as'Illi- 
nois. System relays in northern New Jer- 
sey and southern New York were able to 
sense power overloads and automatically 
disconnect the PUM system from the New 
York system, says Michael Bryson, PJM's 
manager of transmission. 

Although some customersin northern 
New Jersey did end up losing power be- 
cause of the disconnects, the older relay 
technologies “did exactly what they were 
supposed to do,” says Bryson 

- Thomas Hoffman 


Meanwhile, wireless communica- 
tions networks could be cheaper to use 
than fiber-optic networks, but they 


“What a lot of utilities are beginning 
to realize is that we're going to need a 


broadband-over-power-line communi- | 

cations systems, says Fitchett. 
Bryson says he believes the power 

industry will move toward a publish- 


to them access only the information 
they need, he says. 


Smart Sensors 


At present, most utilities discover 


call to report them. Power companies 
“don’t have sensors to know if electric- 





says Don Von Dollen, technical inte- 


| gration manager at the Electric Power 


Research Institute in Palo Alto, Calif. 
In 2003, EPRI launched the Intelli- 
Grid Consortium, a group made up of 
vendors and utilities, including Consol- 
idated Edison Inc. and the Bonneville 
Power Administration, that’s working 


| to develop an intelligent power grid. 


The idea would be for the electric in- 
dustry to install sensors on switches 
and other equipment and connect them 
to public and private communications 
networks. The sensors could then 
quickly alert utilities and RTOs about 
equipment malfunctions or anomalies 
that might lead to a power disruption. 

But while intelligent sensors are now 
available to monitor and report on the 
status of transformers and other elec- 
tric equipment, they’re expensive, 
making it prohibitive for utilities to 
deploy them on thousands of switches 
and pieces of equipment tethered by 
thousands of miles of power lines. 

“We need a $10 device, and they’re in 
the hundreds and even thousands [of 
dollars] range,” says Fitchett. 

Meanwhile, the uncertain regulatory 
environment has led utilities executives 
to question whether steep investments 
in sensors will be justified by their re- 
turns, says Rick Nicholson, an analyst 
at market research firm Energy In- 
sights, a division of IDC. Plus, there’s 
no regulatory authority that requires 
utilities to invest in these kinds of 


| technologies, he adds. 


From 2000 to 2002, U.S. utilities in- 
vested a paltry 0.12% to 0.18% of their 
revenue in research and development, 
according to EPRI. In comparison, 
Fortune 500 drug companies spent 
an average of 12.5% of their annual 
revenue on R&D during that time. 

Widespread deployment of equip- 


| ment sensors would raise other techni- 


cal challenges. For instance, the more 
sensors that are deployed, the more 
data there is to extricate and manage, 
notes Von Dollen. Moreover, there’s 
no central regulatory authority, such 
as the Federal Energy Regulatory 
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Commission, that’s required to gather 


| and monitor that kind of data. 


Members of the IntelliGrid Consor- 


| tium are looking at establishing “decen- 


tralized substations” for collecting and 


| processing sensory data from more than 


150,000 miles of transmission lines 
across the U.S. and then funneling that 


information to a central location for 


data analysis, says Von Dollen. 

“You need a rugged sensor that 
can be exposed to the elements that 
doesn’t cost a lot of money,” says Von 
Dollen. “That’s a tough challenge.” 

For its part, PJM “has a pretty sophis- 
ticated” energy management system 
that’s capable of examining thousands 
of data points at a time across its 
13-state grid, says Bryson. “But we’re 
reaching the limits on computing power 
to be able to crunch this data,” he adds. 

In the end, the future of a self-heal- 
ing grid is largely dependent on the 
amount of money utilities are willing to 
invest in new technologies. Says Nich- 
olson, “I’m skeptical about this moving 
forward without incentives for utilities 
to make these investments.” @ 55643 
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Sample Systems 


SHORT-TERM WEATHER ANALYTICS 
Vendor: IBM 

Location: Armonk, N.Y. 

What it is: IBM is developing model-based software called Deep 
Thunder that’s designed to help utilities determine in advance 
where they may need to send repair crews during a storm. The 
software provides a detailed analysis of locations where thunder- 
storms are likely to occur and which transformers and other equip- 
ment might be vulnerable. 


DEMAND RESPONSE SYSTEM 

Vendor: EnerNOC Inc. 

Location: Boston 

How it works: EnerNOC sells a combined hardware/software 
system to commercial and industrial electricity customers that 
are enrolled in voluntary energy reduction programs with their lo- 
cal utilities. If a utility needs customers to reduce their electricity 
consumption during a heat wave, it contacts EnerNOC. EnerNOC 
then sends a signal to the customer's utility meter advising it to 
reduce consumption. Also, EnerNOC’s Site Server, a Linux-based 
system that's built on a J2EE platform, can turn off a customer's 
nonessential lighting or air conditioning units remotely from its 
Boston operations center via the Internet. 


ENTERPRISE NOTIFICATION SERVICE 
Vendor: EnvoyWorldWide Inc. 

Location: Bedford, Mass. 

How it works: A message from a utility's energy management 
system is sent to EnvoyWorldWide. That message tells Envoy- 
WorldWide to contact commercial customers enrolled in an ener- 
gy reduction program and advise them that they need to curtail 
power consumption. The EnvoyWorldWide notification system, 
which runs on HP DL360, CL380 and DL380 machines running 
Windows 2003 Server software, has a list with the names of the 
people to contact and information about how they want to be con- 
tacted. If the first person listed at a particular site doesn’t respond, 
the rules-based system contacts the next one on thelist. 
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“The mission of the DMTF is well 
served by a conference dedicated 
to information and infrastructure 
management solutions. Enterprise 
Management World continues 
to address the challenges in 
expanding and managing data 
centers and communication 
networks. We invite our member 
companies, Alliance Partners and 
the industry at large to contribute 
to the advancement of this critical 
mission by participating.” 

Jim Turner 
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“Enterprise management is a 
business area where it is chal- 
lenging to stimulate collaborative 
interactivity. There just are not a 
lot of opportunities to meet with 
colieagues from other firms and 
share experiences. EMW provides 
the forum where you can find 
new innovations and practical 
experiences from other technical 
managers who have accomplished 
real world changes and can help 
you translate their experiences 
into your reality” 

Irving Tyler 


Quaker Chemical 
Vice President & CIO 


“EMW is a great gathering of 
high-caliber IT talent. When you 
attend these conferences, you're 
guaranteed plenty of detailed, 
useful information, but without 
the hype, which helps technology 
professionals stay ahead of 
mportant industry trends 
Worth every minute?” 

Ronald V. Rose 
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FOR COMPUTER 


it me manufacturers, 
eV ©, Moore’s Law has 


been about getting 
something for nothing, and not just 
in processor chips. 

For 40 years, systems designers have 
seen memory densities double every 
18 to 24 months while memory chip 
prices have remained essentially flat, 
cutting the cost per bit in half each 
time. As the technical challenges of 
building ever-smaller memory cells in 
silicon have increased, however, some 


memory manufacturers have predicted | 


that the cost curve will start to swing 
the other way before the end of the 
decade. 

Researchers are working on several 
alternate technologies that could even- 
tually replace those in the three mem- 
ory types commonly used today: low- 
cost dynamic RAM (DRAM), used in 
PCs and servers; fast static RAM 
(SRAM), used for processor caches 
and mobile devices; and nonvolatile 
flash memory, used in everything from 
computer BIOSs to cell phones. 

Researchers at IBM, Intel Corp. and 
other companies envision the develop- 
ment of a universal memory technol- 
ogy that could someday replace all 
three. “That’s the Holy Grail,” says 
William Gallagher, senior manager of 
exploratory and nonvolatile memories 


THANKS 


| 
| 
| 
| 


the emergence of a universal memory 
technology is probably at least 10 to 15 


FOR THE 


rUTURE 
MEMORIES 


Chip makers are searching for the Holy Grail: 
cheap, fast, ‘universal’ memories to replace DRAM, 
SRAM and flash. BY ROBERT L. MITCHELL 


| ory technology at a time, such as flash. 
But some attributes of today’s tech- 


Ferroelectric RAM (FRAM) and 
magnetoresistive RAM (MRAM) are 
the best-funded and most-evolved of 
the emerging memory technologies. 
FRAM is a nonvolatile RAM that was 
developed by Ramtron International 
Corp. in Colorado Springs. It’s licensed 
by Texas Instruments Inc. and others. 
More than 30 million products have al- 
ready shipped using FRAM, including 
metering, radio frequency identifica- 
tion and smart-card devices, according 
to Ramtron. 

FRAM, which is based on nanoscale 
“quantum dots,” uses less power and 
writes faster than DRAM or flash, and 
it has a long life span. But the technol- 
ogy remains 20 to 50 times more ex- 
pensive per bit than DRAM, and chip 


| density is far lower. Ramtron is proto- 


typing IMbit parts today and hopes to 


| push the technology to 4Mbit or 8Mbit 


in 2006. Until MRAM is ready for the 
market, however, FRAM is the only 


| game in town for nonvolatile DRAM. 


MRAM is closer to production than 


| most other experimental memories, 
| and IBM and Freescale Semiconductor 


Inc. are the leading MRAM developers. 


| Gallagher calls the technology “mag- 

| netic storage on a chip” because it 

| adapts the magnetic polarization tech- 
| niques used in disk drives to silicon. 


“Tt’s fast, nonvolatile memory that 


| offers a nice combination of high 


| speed, high endurance and reasonable 
| density,” Gallagher says. 


nologies will be hard to beat. 
“Most technologies will probably 
| not be able to compete on lowest cost Chip samples can be produced at 
per bit [against DRAM] or with the | about the same density and cost per 
| fastest SRAM. So they will fall into that | bit as flash. But while promoted as 


at IBM. years away, Gallagher says. 

A universal memory technology Others argue that a universal memo- 
could change how computers are de- ry isn’t possible because one memory 
signed, Gallagher says. For example, | type can’t satisfy all needs. For exam- 
nonvolatile RAM could allow comput- ple, nothing could be the fastest and 
ers to boot up and power down in- cheapest at the same time. space in between,” says Bob Merritt, | universal memory, the density of 
stantly because stored information Most research today is focused on vice president of memory research at | MRAM doesn’t approach that of 
wouldn’t be lost when power was. But addressing the limitations of one mem- | Semico Research Corp. in Phoenix. DRAM or SRAM. Most interest today 


Nanotube Memory 


Nantero’s carbon nanotube RAM combines the nonvolatility of flash with the speed of SRAM 
and the density of DRAM. It works by lifting the nanotubes up and lowering them to make or 
break contact with a metal electrode below. 


| 





Asolid electrolyte is loaded with 
pockets of silver ions in the form 
of superionic (ion-conducting) 
crystals. When a small voltage is 
applied, electrons are added, 
turning the ions into a conducting 
silver nanowire. This reduces the 
resistance of the device by many 
orders of magnitude. The bit state 
(O orl) is then determined by 
measuring the resistance level. 
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is focused on embedded applications. 

Several other challengers to conven- 
tional memory technologies look 
promising but are much earlier in their 
development cycles than FRAM or 
MRAM. 

Phase-change memory (PCM) is a 
fast, nonvolatile memory that propo- 
nents claim could become a universal 
memory. IBM and Intel have each part- 
nered with other companies to develop 
the technology. 

A transistor in a PCM cell applies 
energy to either heat or cool the mate- 
rial, forcing it to change between an 
amorphous (high-resistance) and a 
crystalline (low-resistance) form. A 
current is then applied to measure the 
resistance and establish the state of the 
memory cell as a 0 or 1. 

While PCM technology is much 
faster than flash, it’s slower than 
SRAM. To be competitive with DRAM, 
it would also have to support unlimit- 
ed writes. IBM’s research shows that 
PCM can match flash’s 100,000-write 
limit, but endurance beyond that hasn’t 
been proved, says Gallagher. Ovonyx 
Inc. in Santa Clara, Calif., however, 
claims that its technology, called 
Ovonics, can be written to 10 trillion 
times, making it useful for DRAM as 
well as for flash. 

Carbon nanotubes — hollow, tube- 
shaped lattices of carbon atoms — can 
be used to make a mechanical memory 
that works by bending the carbon fila- 
ment up or down to make or break a 
connection between two electrodes 
(see illustration, page 25). 





“We can combine the nonvolatility 
of flash with the speed of SRAM and 
the density of DRAM,” says Greg 
Schmergel, co-founder, president 
and CEO of carbon nanotube pioneer 
Nantero Inc. in Woburn, Mass. 

The technology can theoretically 
scale as small as 5 nanometers and has 
achieved speeds a few times faster 
than today’s DRAM chips. Nanotube 
chips could be 10 to 15 times smaller 
than today’s DRAM and could offer a 


| ‘. ‘ 
tenfold reduction in power consump- 


tion. Initial products from partners 
such as LSI Logic Corp. are still two to 
five years away, Schmergel says. 

Molecular memory, developed by 
ZettaCore Inc., uses a chemical proc- 
ess to create DRAM memory cells with 
a molecular capacitor. The “chemically 
self-assembling” molecules work by 
adding and removing electrons. This 
changes the voltage, which is then 
measured to determine the state (0 or 
1). The technique supports four states 
and can store 2 bits per memory cell. 

Molecular memories also require 
70% less power than a standard DRAM 
memory cell because the capacitor can 
hold 100 times the charge and there- 
fore needs to refresh memory less fre- 
quently, says Subodh Toprani, CEO of 
ZettaCore. 

Molecular memory will allow 
manufacturers to double or quadruple 
capacity without increasing costs, 
Toprani says. He says he hopes to have 
a product available by 2007 or 2008. 

Axon Technologies Inc.’s Program- 
mable Metallization Cell memory 





BIFURCATION BLUES 


LOW COST AND HIGH DENSITY are the pri- 
mary goals for memory for PCs and other 
AC-powered computers. But battery- 
powered mobile devices like laptops and 
cell phones place a premium on low power 
consumption and nonvolatile memory, 
which retains data when power is removed. 

Today, the memory business is driven 
less by the PC and more by the mobile sec- 
tor. “More nonvolatile memory bits will be 
shipped than volatile memory bits this year,” 
says Bob Merritt, vice president of memory 
research at Semico Research. 

Merritt says diverging market needs are 
likely to drive memory development in two 
directions. The market bifurcation could 


(PMCm) is a DRAM alternative that’s 
nonvolatile, uses less power and offers 
higher density than DRAM (see illus- 
tration, page 25). In it, tiny quantities 
of metal self-assemble into a filament 
as electrons are added to the metal 
ions. Resistance is then detected to de- 
termine the state of the memory cell. 

“We don’t store information as a 
charge; we store it as atoms,” says 
Michael Kozicki, co-founder and chief 
technology officer at Scottsdale, Ariz.- 
based Axon. 

Kozicki says he hopes to have the 
first “real design” available by 2007. “It 
looks like we won’t cost any more than 
current DRAM,” he says. 

Ultimately, the ability to cost-effec- 
tively manufacture new memory tech- 
nologies using existing fabrication fa- 
cilities may separate the winners from 


MEMORIES AT A GLANCE 


www.computerworld.com 





et am ty 


cut into the economies of scale that drive 
down DRAM prices, and thus the cycle of 
doubling memory density every 18 months 
without raising prices could end, he says. 

But the high costs of developing and 
manufacturing memory mean that the in- 
dustry can’t afford to have radically differ- 
ent designs for different markets. 

“You can’t build a decent fab now for 
less than $3 billion,” says Michael Kozicki, } 
co-founder and CTO at Axon Technologies, ’ 
$0 a common technology foundation will be 
needed. “Whoever wins this memory ‘ 
smack-down is going to end up being the ' 


ee ee ee 


memory that wins in both areas,” he says. 
- Robert L. Mitchell 


y 
sam wae asd 


the losers, says Semico’s Merritt. To 
succeed, emerging technology vendors 
will initially focus on niche markets 
where they can coexist, rather than 
compete, with established vendors, 
and thereby continue to evolve. 

“At the moment, all of those [tech- 
nologies] look very powerful and 
doable,” Merritt says. “But it’s always 
the question of, Do they look so valid 
because they are, or because we 
haven’t peeled enough layers of the 
onion yet?” The answers aren’t likely 
to come before the end of the decade. 
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It begins with’ your first visit to Amazon. com and continues through the arrival of Ea ers a: unique 
online shopping experience you deserve, the selection you demand and the low prices that keep you coming 
back again and again. SAS is proud to provide the business intelligence and analytics software that helps 
Amazon.com keep costs low — and pass savings on to its customers — while providing excellent’service.  - 
To learn more about Amazon.com and other SAS success stories that go Beyond Bi. call 1 866 270 5740 or 
visit our Web site. s 


www.sas.com/amazon = 
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No More Playing 
Chicken With Bacteria 


w RESEARCHERS AT THE U.S. Department 
of Agriculture's Agricultural Research Service 
are working to improve computer models that 
help ensure that the chicken salad you buy 
from your local market is safe - and save 
food processing companies a lot 
of money as well. 

Specifically, they're creating 
programs that analyze computer 
models of the growth and sur- 
vival of campylobacter and 
salmonella - the two most com- 
mon bacterial food pathogens - 
on chicken, which is the most 


SY eC) 


NYS elem sy Clim MUMIA] 
of computing - technologies that 
have made a significant difference. 
Deuce eer lcm OEIC le@ TU 
Mee rm Oi eulecm ule Mele 
conceived in 1822 by the eccentric 
STEM Or Lg (esc) 
Babbage. 

Babbage was looking for a way to 
automate the calculation of mathe- 
matical tables - logarithmic and 
trigonometric functions mostly. In his 
time, the tables were created by hu- 
mans working slowly with primitive 
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| consumed meat product in the U.S. 

Working in the relatively new field of 
predictive microbiology, the scientists are 
| homing in on the models that best forecast 
the behavior of food-borne pathogens in 
response to environmental conditions in food 
production and processing operations. Mod- 
els are used by processors and regulatory 
agencies to make proper deci- 
sions about food safety. 

With more than 1.4 million 
cases of salmonellosis food 
poisoning reported annually in 
the U.S., and with tons of most 
likely untainted food products 
thrown away each year, the 
stakes are high. 


| 
| 
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calculators. Impressed by Babbage’s 
plans for his invention, the British 
PTS UAULUL a ee UC CemiNale (Tem Colm CLL) 
project but grew impatient with its 
STM eel ee UOM OULU ech mle) se) a 
several years later. By that time, 
Babbage had abandoned the 
original Difference Engine 
to work on his ideas for 
a more.sophisticated Ana- 
lytical Engine. 

Between 1847 and 1849, 
SF llee(s melee m OMIT) 
original invention and pro- 
duced improved plans for Differ- 
ence Engine No. 2. Alas, the revised 
Sem MT MUM stele) erle Moe Lies 
time either - partially because of prob- 
CPM VUMLIr ie meet eta mL) 
Tala PPR UL MUON mice M MeO Cte 
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Whaddaya Gonna Do? 
Getting Used to Spam 


m E-MAIL USERS are getting more spam, but 
they don’t seem to mind it as much as they 
once did, according to a report from the Pew 


Internet and American Life Project. In a nation- 


wide survey of 1,421 Internet users conducted 
earlier this year, 21% of the respondents who 
have work e-mail accounts said they are re- 
ceiving more spam than they were a year ago, 
while 16% said they are getting less. 


The majority of e-mail users surveyed, 53%, 


said that spam has made them less trusting of 
e-mail. When the same question was asked a 
year ago, however, 62% of the respondents 
said spam had undermined their trust. More 
spam, less distrust - go figure. 

A whopping 67% of the people who re- 
sponded to this year’s survey said that spam 
makes being online unpleasant or annoying 
But that's a significant improvement over last 
year's 77%. 


THE EFFECTS OF 
SPAM OVER TIME 
am Spam has reduced my use of e-mail. 
Spam has made me lose trust in the Internet. 
== Spam has made being online unpleasant. 
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ued to tinker with the design. Bab- 
bage’s work, however, inspired Per 
Georg Scheutz to build several. Differ- 
ence Engines, and he even sold one to 
the British government in 1859. 
From 1989 to 1991, the London 
Science Museum used Bab- 
bage’s original drawings to 
painstakingly construct the 
first complete Difference 
Engine No. 2. The device 
was constructed in accord 
PUM Umea mural TiT 
tolerances and worked per- 
fectly. The Difference Engine was 
able to produce calculations to 31 deci- 
mal places of accuracy. Such calcula- 
tions did, however, require the operator 
to turn a mechanical crank hundreds, 
or even thousands, of times. @ 55673 
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Berkeley Leads the Way to 


Little, Liquid Computing 


1. Source reservoir 
2. Gate metal 

3. Drain reservoir 
4. Source electrode 
5. Drain electrode 
6. SiO. layer 

7. $i 


@ AT THE University of California, 
Berkeley, researchers have created 
the first “nanofluidic” transistor, a 
device that allows them to control the 
movement of ions through submicro- 
scopic, water-filled channels. 

Just as the electronic transistor be- 
came the main component of micro- 
processors and integrated circuits, 
nanofluidic transistors will anchor 
molecular processors, allowing micro- 
scopic chemical plants on a chip that 
will operate without moving parts, say 
the inventors, mechanical engineering 
professor Arun Majumdar and chem- 
istry professor Peidong Yang. 

Cancer diagnosis is one of the ear- 
ly applications of the technology be- 
ing explored by Majumdar and Yang. 
A nanoscale chemical analysis chip 
could, theoretically, take the contents 
of just 10 cancer cells and pull out pro- 
tein markers that could alert doctors to 
the best way to attack the cancer. 

The research team is investigating 
whether nanofluidic transistors will 
have the same capabilities as the 
metal-oxide semiconductor field effect 
transistors used in most of today's 
microprocessor chips, says Yang, 
though the new invention is a differ- 
ent information-processing device be- 
cause it works at the molecular level. 

Nanofluidic transistors could be 
made with the same technology used 
to produce integrated circuits, says 
Majumdar. And nanofluidic channels 
could be integrated with electronics 
ona single silicon chip, he adds. 

Yang and Majumdar say their goal is 
to develop the first integrated circuit 
using nanofluidic transistors. 


Page compiled by Tommy Peterson. 





www.computerworld.com 


_ TECHNOLOGY 





User’s End Run Aro 


und 


VPN Leads to New Push 


Aworm crawls into the network when the 
VPN is accessed improperly. What can be 
done to avoid a repeat? By Mathias Thurman 


NCE AGAIN, I spent 
most of my week deal- 
ing with an outbreak of 
malicious code, and 
I’m now taking steps to avoid a 
similar problem in the future. 
This time, we were hit with 
the W32.Mytob.HH@mm 
worm. We had been hit with a 
similar worm a few weeks ear- 
lier; the main difference is that 
this version uses different 
ports to connect back to the 
Internet Relay Chat 
(IRC) channel. 
Our intrusion- 


detection guru traced rs 
the infestation to a 
JOURNAL & 


user connecting to 
the corporate net- 
work via the VPN 
from a local airport. I talked to 
the user, and he told me that 
he bypassed the recommend- 
ed method of gaining remote 
access when he associated to 
a wireless access point at the 
airport. When he booted up 
his laptop, the access point 
showed up in his task bar, and 
he was automatically connect- 
ed without any authentication. 

The user said he did some 
work on the Internet before 
launching the VPN client, and 
that “work” included execut- 
ing an .exe file from an e-mail 
he got stating that his account 
had been terminated. He had 
assumed the e-mail was from 
our human resources system 
he had previously gotten a 
message directing him to 
change his password for the 
system, but he hadn’t gotten 
around to doing that. When 
he clicked on the link called 
“account-details.exe,” nothing 
seemed to happen. 

Well, we now know exactly 
what happened. His laptop 
was infected, and when he 
connected to the corporate 


| VPN, the worm propagated to 
our internal network. 

We tell users that the proper 
method for remote access, es- 
pecially when traveling, is to 

| use iPassConnect Universal 
Client from Redwood City, 
Calif.-based iPass Inc. We have 
configured iPassConnect so 
that after a user authenticates, 
it checks the system to ensure 
| that both a desktop firewall 
and our virus-checking client 
are installed and 
running. 

We also have the 
iPass client time out 
if the user doesn’t 
authenticate to our 
corporate VPN 
within two minutes. 

In addition, our VPN client 
forces the user to input his 
username and RSA SecurID 
token for authentication. 
Chances are good that if the 
user had followed these proce- 
dures at the airport, the mali- 
cious code he executed would 
have been spotted. 

To enhance the security of 
our VPN infrastructure, we 
are installing Sunnyvale, 
Calif.-based Fortinet Inc.’s 
FortiGate appliance. We’re al- 
ready using these devices to 
protect our development lab 
environment, or rather to pro- 
tect the corporate environ- 
ment from the lab environ- 


We can’t vouch for the 
security of systems 
accessing the VPN. 

Employees don’t 
follow the rules. 








ment. At the insistence of the 
| lab managers, our develop- 
| ment labs don’t conform to 
| our corporate policies regard- 
| ing host and network security, 
| and things such as virus pro- 
tection, patches, configuration 
management and secure base- 


agers feel that they must be 
| free to set up their environ- 
ment as needed to properly 
test products. 


| Containment 

| Instead of fighting with them 

| to conform, we decided it 
would be best to position one 

| of the FortiGate appliances be- 
tween the corporate network 
and the lab. Our hope is that if 
lab resources become infect- 
ed, we can contain the infesta- 
tion to the lab network. 

This same reasoning is now 
| being applied to the VPN seg- 
| ment. We can’t vouch for the 
security of systems accessing 
the VPN. Employees don’t 
follow the rules. We know that 
some of them have installed 
VPN software on their home 
systems. We’ve even seen 
| cases of employees installing 
VPN software on systems in 
| kiosks, libraries and customer 
sites. It’s pretty ugly. 

We’re working on a method 
to ensure that only authorized 
company assets are permitted 
VPN access, but until we do 
some testing, we have to 
live with the current con- 
figuration. 

Although the FortiGate ap- 
pliance is ideal for detecting 
viruses, worms and Trojan 
| horses, it can detect only what 
it knows about. It monitors all 
| the network traffic that passes 
through it and looks for pat- 
terns or signatures that match 
what it knows to be “bad.” 

The problem is that some 
malicious code can be deliv- 
ered in what is termed a “zero- 
day” attack, meaning that the 
| code is written as soon as a 








vulnerability is identified, and 


| it’s sent out into the world be- 
| fore there are any antivirus 

| signatures for it. Such mal- 

| code is easily propagated until 
| the antivirus companies can 

| get a hold of the code and 

| write a signature. 

lines aren’t used. The lab man- | 


With this problem in mind, 
I’m considering using a host- 
based intrusion-detection sys- 
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tem, or HIDS. Almost all HIDS | 


| products “learn” the normal 
| activity of a system. System 


calls, key-file manipulation, 


| services, activity in the reg- 


istry (if Windows NT), appli- 
cations, network activity and 


| several other areas are moni- 


tored for a period of time. 
Once you put the HIDS into 


| action, departures from nor- 


mal activity are detected and 
action can be taken. So, for ex- 
ample, in the case of a zero- 
day worm, if the worm installs 
a new service, modifies the 
host file or opens a back chan- 


| nel to some obscure IRC serv- 


er on the Internet, the HIDS 
will detect that activity, re- 
gardless of whether a signa- 
ture has been written. 

I haven’t deployed a HIDS 
yet. The last time I tested 
these products, the HIDS 
agents caused an excessive 
amount of CPU utilization 
and our desktop firewalls had 
to be disabled. I decided at the 
time that deploying this tech- 
nology to thousands of work- 
stations wouldn’t be in the 
best interest of the company. 
But I'll take a look at the HIDS 
product landscape within the 
next couple of weeks to see 
how the market has changed. D 


WHAT DO YOU THINK? 


| This week's journal is written by a real securi- 


ty manager, “Mathias Thurman,” whose 
name and empioyer have been disguised for 
obvious reasons. Contact him at mathias_ 
thurman@yahoo.com, or join the discussion 
in our forum: QuickLink a1590 

To find a complete archive of our 


Security Manager's Journals, go online to 
@ computerworld.com/secjournal 


The standard encryption 
mechanism used by Oracle 
Corp.’s database products can 
be easily circumvented, ac- 
cording to German security re- 
searcher Alexander Korn- 
brust. The encryption features 
that come standard with Ora- 
cle’s database are called 
DBMS Crypto and DBMS 0b- 
fuscation Tooikit. Oracle Di- 
rector of Product Manage- 
ment Paul Needham acknowt- 
edged that for many Oracle in- 
stallations, these encryption 
keys could be available to an 
attacker who gained access to 
a privileged database adminis- 
trator account on the server. 


CA Acquires Qurb 
Computer Associates Interna- 
tional Inc. bolstered its securi- 
ty product line by acquiring 
e-mail security software ven- 
dor Qurb Inc. CA said it bought 
Qurb in an all-cash deai that 
will enable it to add Qurb’s anti- 
spam, antiphishing and anti- 
fraud tools to CA’s eTrust se- 
curity management products. 
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Symbol Announces 
Wireless Bridge 


® Symbol Technologies Inc. in 
Holtsville, N.Y., has announced 
the CB3000 Client Bridge, a 
device aimed at providing large 
companies with wireless connec- 
tivity in areas where installing | 
Ethernet cable isn’t an option. 
The bridge can link 16 Ethernet- | 
enabled devices to a network, 
including printers, medical equip- 
ment, manufacturing machinery, 
time clocks or point-of-sale 
systems. It works over 802.11a, 

b and g networks and is priced 

at $285. 


| 
| 
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BEA Enhances 
SOA in Tuxedo 9.0 


@ BEA Systems Inc. has announced 
the general availability of BEA 
Tuxedo 9.0, which enhances se- | 
curity and support for service- 
oriented architectures to its high- 
end transaction-processing soft- 
ware. New features include 
tighter integration with BEA’s 
WebLogic application server to 
provide cross-platform interoper- 
ability and integration with the 
AquaLogic enterprise service bus 
and Web services management 
tools, according to the company. 
The new version also includes 
features to boost security and 
quality of service. Pricing infor- 
mation wasn’t available. 


Mobius Updates 
Integration Tool 


® Mobius Management Systems 
Inc. has unveiled Version 2.2 of 
its ViewDirect Total Content Inte- 
grator Web-services-based soft- 
ware, which allows access to 
content in any format from any 
source. The update adds connec- 
tors that allow ViewDirect to be 
used with content management 
applications such as IBM’s DB2 
Content Manager OnDemand, 
EMC Corp.’s Documentum and 
Microsoft Corp.’s SharePoint and 
SQL Server, according to the Rye, 
N.Y.-based vendor. The software 
starts at $80,000, plus $20,000 





per repository adapter. 
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A Convert Witha 
Crush on His Mac 


HIS MONTH, I celebrate an anniversary. 
No, not my wedding anniversary; that was 
last month. This anniversary marks my 
second as a Mac convert. Over the past 
two years, my Mac has lived up to all its 
promises and has never ceased to delight me. 

One of the main reasons for my initial interest in the 
Mac was security. Having spent countless hours repair- 
ing my family’s, friends’ and co-workers’ computers af- 
ter the ravages of malware, it occurred to me that there 
must be a better alternative. With its Unix core, the 
Mac OS X operating system was very appealing to me. 


Yeah, I tried several flavors 4 
of Linux but never could 
get any of them configured 
precisely the way I wanted. 
When it comes to raw, 
out-of-the-box security, the 
Mac has you covered from 
the minute you plug it in. 
Most ports are closed by 
default, and like Windows 
XP, OS X comes with a 
built-in firewall that can be 
enabled with a few mouse 
clicks. As far as malware is 
concerned, well, there are 
very few viruses or pieces of spyware 


written that can infect a Mac machine. 


This isn’t so for the PC. In fact, 
security vendor Sophos estimates that 
a brand-new, unprotected PC has 
about a 50-50 chance of getting infect- 
ed within its first 12 minutes online. 
The Mac OS makes it hard for mal- 
ware to get through. 

For example, one of the ways mal- 
ware is able to “hide” from users 
under Windows is via hidden file ex- 
tensions. Many users aren’t aware that 
even if you tell Windows to display 
all file extensions, there are still some 
that are hidden by default. To make 


matters worse, a Trojan 
horse or any installed 
program can reconfigure 
your extensions so that 
they are no longer hidden. 
Under OS X, you aren’t 
permitted to hide a file’s 
“real” extension if hiding 
it causes the file to appear 
to have a different exten- 
sion. Furthermore, if you 
attempt to append an 
extension onto an applica- 
tion’s true extension, 
the true extension will 
become revealed and you won’t be 
able to hide it. 

Let’s say you have a file called 
MyApp.app. The common .app Mac 
extension is hidden by default. If you 
were to alter the .app extension by 
appending .jpg to the end of it, you 
would see MyApp.app.jpg without 
any changes to the operating system’s 
default configuration. If you were 
to change the extension to read 
MyApp.jpg.app, the application 
would cease to work. 

Another thing that helped in my de- 
cision to try a Mac was the abundance 





of applications available for OS X. My 





non-Mac constituents had warned me 
that there were so few Mac applica- 
tions that I’d be certain to regret my 
switch. In fact, the most common justi- 
fications for not buying a Mac consist 
of a lack of software, a lack of games 
and compatibility issues. These excus- 
es are simply myths and have no basis 
in fact. Just take a look around; there 
are thousands of applications available 
for Macs. 

According to systems integrator 
James Clemens at the Babylon, N-Y., 
public library, his recent addition of 
eMacs into the library’s large Win- 
dows environment proved that Macs 
could play just fine with PCs. From 
running Microsoft’s Office suite to do- 
ing your taxes via TurboTax or Tax- 
Cut, Macs can do it all. When it comes 
to music, OS X has you covered, too. 
ITunes allows you to quickly build a 
playlist and burn that to a CD with just 
a few mouse clicks. 

Don’t get me wrong — I love Win- 
dows XP, and with all the changes 
of late, it’s a secure and fairly stable 
operating system. But after two years 
of continuous operations, I’ve had to 
restart my Mac only once because 
it froze. And if total cost of ownership 
has you worried, fear not. In my ex- 
perience, Macs are more stable and 
require less technical support than 
their Windows or Linux counterparts. 

Whether it’s freezing screens, blue 
screens, malware or spyware that has 
you down, be glad that an alternative 
is available. As cybersecurity and 
awareness guru Winn Schwartau says, 
“You don’t have to take it anymore.” So 
maybe it’s time you gave Mac OS Xa 
try. As I like to say, once you go Mac, 
you never go back! @ 55803 
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BPO: Big Political Opportunity 
IT execs like Emcor’s Peter Baker 
have the comprehensive view, 
process know-how and experience to 
take the lead in business process 
outsourcing. Here’s how to do it — 


and why you should. Page 33 


Think Tank 

RFID is everywhere. Get ready 
for a world where RFID chips 
can be used to track food 
ingredients, fruit, shopping carts, 
soldiers, construction tools and 
gambling chips. Page 36 


O8.OLOS 


Career Watch 

Hewlett-Packard CIO Gilles Bouchard 
answers readers’ questions about 
pursuing training and getting that first IT 
job. Also, learn who really loves the IT 
department and whether offshoring is as 
prevalent as most people think. Page 37 





OVING MAGNETIC TAPES in and out of storage 
would seem to be the most mundane of IT 
functions. Indeed, companies have tradi- 
tionally seen the transportation and stor- 
age of backup media as so routine that 
they have relegated it to non-IT personnel 


such as couriers or outsourced the job entirely. But 
§ 6 4 A th | that’s changing now, following a rash of high-profile 
y ary 2 ni es horror stories involving lost data that have been 
compounded by legislatures and courts that no 
longer buy the “the dog ate my tapes” excuses. 





32 COMPUTERWORLD August 1, 2005 


MANAGEMENT 


www.computerworld.com 








In February, Bank of America Corp. lost a tape 
with credit card information on 1.2 million cus- 
tomers. In April, Ameritrade Holding Corp. told 
200,000 current and past customers that a tape con- 
taining confidential account information had been 
lost or destroyed in transit. Time Warner Inc. report- 
ed in May that 40 tapes containing personal data on 
600,000 current and former employees had been lost 
en route to a storage facility. In June, Citigroup Inc. 
said that a box of tapes holding personal information 
on 3.9 million customers had disappeared on the way 
to a credit bureau. 

And sometimes tapes go missing inside a compa- 
ny’s four walls. In March, a Florida judge hearing a 
$2.7 billion lawsuit by financier Ronald Perelman 
against Morgan Stanley issued an “adverse inference 
order” against the company for “willful and gross 
abuse of its discovery obligations.” 

The judge cited Morgan Stanley for repeatedly 
finding misplaced tapes of e-mail messages long after 
the company had claimed that it had turned over all 
such tapes to the court. 

In theory, there are straightforward ways to avoid 
these costly and embarrassing mishaps. But those 
measures, such as data encryption and backing up to 
remote sites via secure networks, have serious draw- 
backs, so it’s likely that trucks full of tapes holding 
sensitive information will be roaming the roads for 
years to come. 


RISK 1S NEVER ZERO 

Driven in part by regulatory requirements, Excel En- 
ergy Inc. in Minneapolis backs up data to tape “in 
terabytes per week,” according to Mike Carlson, vice 
president of business transfer and customer value. 
The tapes are taken off-site and stored by Iron 
Mountain Inc., a Boston-based records management 
and storage company. 

Asked if his company is taking any special steps as 
a result of the recent highly publicized tape mishaps 
— Iron Mountain acknowledged that it lost the Time 
Warner tapes — Carlson says, “We are actively work- 
ing with them to ensure that it’s not a systematic 
glitch that puts us at risk.” Nevertheless, there will al- 
ways be some risk of human error, he says. 

Iron Mountain performs at a 99.999% level of relia- 
bility in its media transportation and storage opera- 
tions, says Ken Rubin, executive vice president for mar- 
keting. “Over the past 50 years, we have honed a chain 
of custody and inventory control process,” he says. “We 
have basically automated out of the process nearly all 
of the exposure to human error, but not 100% of it.” 

A tape goes through several distinct phases as it 
moves between Iron Mountain and a customer, and 
each step is recorded via bar-code scans, Rubin says. 
There are other protections as well, such as special 
security systems and alarms in the company’s trucks. 
Iron Mountain recently completed an audit of all its 
facilities and processes and pulled from service a few 
trucks that failed inspection, Rubin says. 

{ron Mountain offers service-level agreements, 
such as one that guarantees times for returning a tape 
requested by a customer. But the company follows the 
standard industry practice of limiting its liability to 
the value of the physical media in its possession, not 
the content of the media. “The fees that Iron Moun- 
tain and all the vendors charge — basically pennies 


| or truck than it is to transmit it electroni- 





Enteprise Strategy Group offers these fips to 
avoid security breaches in backup media: 


1. Perform a risk analysis of the entire backup 


per tape per month — are nowhere near what would 
be required to take on any more liability than just for 
the media,” Rubin says. Customers could buy separate 
insurance for content, but few do, he adds. 

Rubin says the “best and most practical” way to 
protect confidentiality is to encrypt sensitive data 
before it’s written to tape. And, he advises, “make 
sure that your methodology for moving tapes off-site 
has the best chain-of-custody processes imaginable.” 

Carlson says he has jooked into Iron Mountain’s 
Electronic Vaulting service, by which backup data is 
automatically encrypted and sent over a network to 
Iron Mountain. But the service isn’t cost-effective for 
the very large amounts of data Excel Energy backs 
up, he says. Iron Mountain agrees that the service 
isn’t practical for large backup needs. 

Carlson says it’s faster and cheaper to 
ship large amounts of data on tape via air 


cally. IBM runs a disaster recovery center 
on the East Coast for Excel that would re- 
quire eight hours to bring online. That’s 
easily enough time to fly tapes there from 
Excel’s Colorado data center or from Iron 
Mountain, Carlson says. 

Last year, nearly three quarters of 388 companies 
polled by Enterprise Strategy Group Inc. (ESG) in 
Milford, Mass., said they infrequently or never en- 
crypt backup data written to tape. 

In a report, ESG said it was surprised to learn 
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THE BACKUPS 


that government agencies and big financial services 
companies are among the organizations least likely 
to employ backup encryption. “Bank of America did 
not encrypt its backup tapes and thus suffered an op- 
erations and public relations debacle, the costs of 
which may ultimately far exceed the cost and opera- 
tional overhead of encrypting its backups,” the re- 
search firm said. 


NEGLECTING STORAGE SECURITY 


According to ESG, companies spend far more on 
network perimeter security than on storage security. 
But the report said that “the onslaught of publicly 
reported security breaches and impending legislation 
will cause a profound change in security investment 
priorities.” 

According to Steve Kenniston, vice president for 
corporate strategy at Iron Mountain, encrypting 
backup data takes time, and with an explosion in data 
at most companies, the time windows for backups 
are already squeezed. Although encryption offers 
better data security, he says, it may adversely affect 
data protection — that is, making sure backup data is 
available quickly and easily for recovery purposes. 

Kenniston urges his customers to consider classi- 
fying data according to its function and sensitivity. 
For example, the most sensitive data, such as payroll 
records, might be encrypted and/or electronically 
vaulted, whereas other data might not justify the cost 
of those measures. But this kind of data discrimina- 
tion isn’t something IT shops have typically done as 
part of their backup processes, he says. 

Rent-A-Center Inc., a Plano, Texas-based chain of 
3,000 consumer-goods rental stores, produces 30 to 
40 unencrypted backup tapes every day and turns 
them over to Iron Mountain. The company is now 
implementing a “stem-to-stern encryption process” 
based on 128-bit keys and hash signatures, which can 
be used to reveal whether the contents have been al- 
tered, says K.C. Condit, director of technical services. 

“There is some overhead with encryption,” which 
is why the company hasn’t done it until now, says 
Condit. “There have been some technology concerns 
and some people concerns as well. But we are getting 
to the point that you really can’t afford not to do it.” 

Meanwhile, Prince William County in Virginia is 
scrapping its tape backup system in favor of backing 
up data to disk over a secure network to a remote site 
owned by the county. CIO Masood Noorbakhsh says 
the goals are to decrease the time it takes to run back- 
ups and restores and to increase security. Because it’s a 
private network, it won’t be necessary to encrypt the 
data in transit, he says. 

Church Mutual Insurance Co. in Merrill, 
Wis., produces about 10 backup tapes per 
day, and its employees move them to the 
basement of a bank two miles away. Using 
a company such as Iron Mountain would 
offer some advantages, says CIO Christo- 
pher Graham, but it would cost more. 
Church Mutual typifies the many com- 
panies that have yet to join the embarrassed 
ranks of Bank of America, Time Warner, Ameritrade 
and Citigroup. “Management right now thinks that 
what we have in place is adequate,” Graham says. 
“Nothing bad has happened yet, so why spend more 


Ten 


| money?” @ 55569 
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BPO: 


BIG POLITICAL 
OPPORTUNITY 


Business process outsourcing gi 


ClOs a chai 


N THE PAST FEW MONTHS, Peter 

Baker has conducted interviews 

with a handful of business proc- 

ess outsourcing (BPO) providers 

and invited a couple of them 

back to Emcor Group Inc.’s head- 
quarters for further conversation. Em- 
cor, a $4.7 billion construction and 
facilities maintenance company in 
Norwalk, Conn., has no solid plans to 
engage a BPO provider; Baker, direc- 
tor of applications, is simply keeping 
on top of the BPO trend. “We’re six 
months away from even having any 
senior executive at Emcor agree to an 
audience,” he says. 

This is exactly the kind of activity 
and analysis IT executives should be 
engaged in during this BPO-crazed era, 
experts say. BPO providers are on the 
hunt for fresh deals, and if IT doesn’t 
take the lead, it could get left out of the 
conversation. Then it would have to 
deal with the terms of whatever con- 
tract was signed. 

“If they were to get to an executive 
and sell them on something that IT 
would have to implement, we'd have to 
do a lot of backtracking and backpedal- 
ing,” Baker says. And although BPO 
providers such as Hewlett-Packard Co. 
say they often start their BPO conver- 
sations with the CIO, others say there’s 
a tendency to sidestep IT until later. 

“Tt happens all the time,” says Vinnie 
Merchandani, CEO of Deal Architect 
Inc., a Tampa, Fla.-based consulting 
firm that helps clients negotiate tech- 
nology contracts. BPO providers “like 
to go straight to the end user because 
the margins are better and there’s less 
to negotiate.” 

But it’s much more advantageous for 
IT to be involved at the front end, says 
Phil Fersht, an analyst at The Yankee 





nce to lead. By Mary Virani 


at 


4 [BPO] vendors 
deal with peo- 
ple they know are 
not good at manag- 
ing vendors, and they 
take advantage of it. 


See eeoeeeseseesesseeseseseesseeseee 


PETER BAKER, DIRECTOR OF 
APPLICATIONS, EMCOR GROUP INC 


Group in Boston. “The CIO has to en- 
sure he’s the No. 1 point of contact 
with the CEO and CFO when the deci- 
sion is being made, or risk getting 
caught in the tide,” he says. 

And the tide is rising. Gartner Inc. 
projects that spending on BPO will 
grow worldwide from $112.9 billion 
in 2003 to $176.1 billion in 2008. Lead- 
ing the trend are CEOs and chief fi- 
nancial officers targeting noncore 
business processes to shave expenses, 
and BPO providers hoping to supple- 





ment their IT outsourcing businesses. 

While taking the lead in BPO discus- 
sions is partly a defensive move for 
CIOs, they also have a lot to offer from 
both a technology and a business per- 
spective. In fact, according to Patrick 
Grady, CEO of Rearden Commerce Inc., 
a BPO-enabling technology provider in 
San Mateo, Calif., only the CIO can help 
companies avoid costly BPO disasters. 

For example, Grady says that too 
many BPO vendors are offering more 
than they can provide with traditional 
host-based technology platforms. Over 
time, he says, as vendors add more cus- 
tomers and have to make modifica- 
tions to applications, service levels 
will inevitably fall off. “It looks like a 
win to the CFO,” Grady says, “but if the 
BPO vendor is hemorrhaging, it’s go- 
ing to come back to bite the customer.” 

In Grady’s view, only the CIO or an 
IT architect can appreciate how the 


underlying technology capabilities will | 


affect the vendor’s ability to meet its 
end of the bargain over the long term. 


Front-End Concerns 


And there are other technology factors 
to consider at the outset of the deal. 
For example, are you outsourcing just 
the business process side, the applica- 
tion or the entire infrastructure? 
“Even if you’re leaving the infra- 
structure and application in-house, 
you need to consider factors like secu- 
rity, risk management and data integra- 
tion with other systems and process- 
es,” says John Dick, CIO at Regions 
Financial Corp. in Birmingham, Ala. 
Other CIO-level concerns include 
data access, impact on bandwidth and 
contractual compliance with the other 
technologies in the environment, says 
Marc Schwartz, worldwide vice presi- 
dent of BPO at HP Services. 
Technology isn’t the only area where 
CIOs can help on these deals. The IT 
leader is also often the process expert 
in the company, knowing better than 
anyone else how various departments, 
processes and systems interrelate. 
“IT is the only department that 


| touches every other department,” Bak- 


er says, joking that the IT department’s 
name should be changed to the “busi- 
ness process office.” 

That’s the situation at Siemens Med- 
ical Solutions in Malvern, Pa. CIO David 
Rice says his IT department is heavily 
focused on what it calls its business 
process model. “Everyone is clear on 
what the business process owner does 
and the relationships between various 
business processes. Everyone knows 
the model in their sleep,” he says. 

If Siemens Medical were to decide 
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Be Prepared 


Your company isn’t considering busi- 
ness process outsourcing yet? That 
doesn’t mean it won't happen — and it 
could be sooner than you think. Here 
are some ways to prepare: 
Understand what BPO means 


and the dynamics of why corpora- 
tions are doing it. 


Engage sourcing to 
start an initial dialogue about what 
they have to offer. 


Research BPO benchmarks and 
test cases. 


Know your company’s business 
processes and maintain a compre- 
hensive and up-to-date view of them. 


Talk with colleagues about their 
BPO experiences and insights. 
- Mary Brande! 


to outsource a business process, Rice’s 
group would have particularly keen in- 


| sight into which processes would be 
| easiest to break off, in terms of interde- 
| pendencies with other departments. 


Managing the Wolves 


| A third area where CIOs are crucial is 


in the negotiation of the BPO contract. 
“These vendors deal with people they 
know are not good at managing ven- 
dors, and they take advantage of it,” 


| says Baker. 


BPO deals can be so complex that 
even getting internal constituents on 
the same page is a challenge. “One 
person might think the goal is improv- 


| ing throughput, while another is think- 
| ing cost reduction. Or maybe there’s a 


way of structuring a deal to get imme- 
diate [expense relief] and then bring 
it back in-house,” Rice says. “You have 
to ensure everyone has the same un- 
derstanding.” 
Because of their experience in IT 

outsourcing, CIOs are often more fa- 
miliar with these critical issues than 


| their business counterparts are. 


When CIOs help their companies 
succeed at BPO, the benefits flow both 


| ways. Adding a successful BPO deal to 
| his résumé can’t help but enhance a 


CIO’s career prospects. And ignoring 


the trend can have the opposite effect. 


“It’s here to stay,” Fersht says, “and if you 
don’t understand it, you'll suffer in your 
own career development.” @ 55566 
Brandel is a Computerworld contribut- 
ing writer in Newton, Mass. Contact her 


| at marybrandel@verizon.net. 





PAY MORE ATTENTION TO SERVERS 
EFORE YOU BUY THEM. 


SO YOU CAN PAY LESS ATTENTION 


xSeries 226 Express 


An entry-level server that offers 
the reliability and performance 
needed for business-critical 


computing. Easy set up, deploy- 


ment, and access to all major 
system components. 


System features 


Xeor 


$1,639** 


(Other configurations as low as $1,229") 


IBM Financing Advantage 


IBM eServer xSeries 346 Express 


Help maximize performance 
and improve availability in a 
rack dense environment with 
Xtended Design Architecture 
Includes features like Calibrated 
Vectored Cooling, an IBM inno- 
vation that helps to cool your 
system and improve uptime 


System features 


$3,999** 
(Other configurations as low as $2,219") 


IBM Financing Advantage 


$109 


IBM TotalStorage DS300 Express 


| -—=<. 


IBM eServer xSeries 366 Express 


With the power of 3rd generation 
Enterprise X-Architecture;” it sets 
a new standard for 4-socket, 
64-bit servers. Delivers increased 
performance, systems manage- 
ability, and simultaneous support 
for 32 and 64-bit apps. 


System features 


$13,779** 


(Other configurations as low as $6,999") 


IBM Financing Advantage 
$379 


System features 


Entry-level, cost-effective SCSI storage systems 
designed to deliver advanced functionality at a 
breakthrough price. Provides an exceptional 
solution for work group storage applications, 
such as e-mail, file, print, database and intel 


Xeon Processor-based servers. 


$5,355* 


(Other configurations as low as $2,995) 


WW 
<— 
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IBM eServer BladeCenter HS20 Express 


Designed to support the Intel 
Xeon Processor and packed 
with high-availability features, 
the eServer BladeCenter 
HS20 with an industry-leading 
modular design delivers density 
without sacrificing processor 
performance. 
System features 
Jp to two Inte 

rrocessors 3.2\ 
Up to 14 blades pe 
Supports both 32 

and 64-bit applications 
IBM Director 


LImMitea we 


yn-site 
n $2,979** 
(Other configurations as low as $1,839") 


IBM Financing Advantage 
$82 


IBM Financing Advantage 
nly $147 ; 





TO THEM AFTER. 


With IBM® Express Servers and Storage™ offerings ET oe te vee 

designed for mid-sized businesses, help is here. 
@@ THE WORLD’S HELPDESK: 

You've already got a zillion things that require your 8 isa Shoot hechgs en ediadcntai aeaacaloig en’ 

attention —you shouldn't have to worry about your systems. : 

That's why IBM Express products offer reliability features, /_Léarn more about our full 


which help them do their job so you can focus on yours range of TBm Express 


Take IBM Director, which comes standard: It can pro- products and financing 
actively notify you of a potential problem —up to 48 hours : options. And find the Lem 
in advance. Or our Calibrated Vectored Cooling feature 
available on select xSeries systems. It can cool your system : 
more efficiently. This means more features can be : Who can help you choose the 
packed into a smaller server—for more functionality and right system to meet your 
. : Za 
greater flexibility. 


Business Parmer near you - 


. requirements. 
It's just an example of our self-managing features that help i 
you take back control of your IT. Which can help lower ; ibm.com/eserver/helpishere1 
your maintenance costs, too. Because with IBM Express 

Servers and Storage, innovation comes standard. It’s : 1-800-IBM-7777 
not optional. Plain and simple, it's built in: mention 104CEQ1A 


Partner. Which means you can have a one-to-one chat our or eusiee 

with someone who understands your industry and your a : Sg aes eer cea mee aes 
business — and who's located in your neck of the woods HELP FOR ANY SIZE PROBLEM 
And for mid-sized businesses, that’s really big help ina 

really big way. 


There's also one more great feature — your IBM Business eG Sie ae € Bete eee 


BM TotalStorage DS400 Express System features 


With advanced functionality, the DS400 provides 

an exceptional solution for work group storage 

applications. It supports Intel Xeon Processor- 

based servers and offers Fibre Channel drives 

designed for high performance, and hot-swap 

Ultra320 SCSI drives designed for high reliability. $8,495* IBM Financing Advantage 
(Other configurations as low as $4,995) $234 
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RFID Is Showing 
Up on Food, Tools 
And Casino Chips 

A RECENT REPORT from Forrester 
Research Inc. says that eventually, the 
radio frequency identification market as 
we know it today will disappear. Why? 
RFID will move beyond the supply chain 


and simply become a sensor technology 
embedded in a wider variety of business 


to “walk off” construction job sites. Gam- 
ing Partners international Corp. in Las 
Vegas has already sold 3 million RFID- 
embedded gambling chips to casinos to 
fight counterfeiting. 

Marsha Thomson, IT minister of the 
state of Victoria in Australia, returned from 
a trade fair in Japan predicting a world 
where sensors are everywhere. She says 
she saw RFID chips “the size of glitter” 
that could be sprinkled on enemy forces 
during warfare and used to track troop 


movements. 

She also saw RFID used in fruit ship- 
ments. The chips contained information 
such as the fruit's country and farm of ori- 
gin, batch number and use-by date. They 
also identified any chemicals it may have 
been treated with if it wasn’t organically 
grown. @ 55600 

- Mitch Betts and Michael Crawford 
(Computerworld Australia) 


processes, such as “predictive mainte- 
nance” and real-world market research. 
For example, Northfield, Ill.-based Kraft 
Foods Inc. uses RFID-tagged containers 
to track the location and freshness of the 
ingredients it uses. A grocery retailer can 
use RFID-tagged shopping carts to moni- 
tor and analyze shopping patterns in the 
aisles. Several firms are using RFID chips 
to keep track of expensive tools that tend 


seecee 
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| management professor Tom Davenport argues that 
the laissez-faire approach isn't good enough any- 
more. He joins management guru Peter Drucker in 
saying that the challenge of our times is to find 
ways to improve the performance and results of 
these knowledge workers, because they're the key 
to organizational growth and economic success. 
Knowledge workers are the ones who come up 
with new business strategies and 
products. They're also the most ex- 
pensive employees in the company. 
Davenport acknowledges that 
managing knowledge workers is like 
herding cats, but he asks us to imag- 
ine how much better our organiza- 
» tions would be if we could help them 
sbe more effective. And that’s where IT 
comes in. This book has a whole 
chapter on how IT can foster collab- 
oration, share knowledge, embed 
knowledge in work processes and pro- 
vide role-specific portals to reduce the amount of 
time spent searching for information. 
~ Mitch Betts 


Best Bits 


The most useful parts of recent business and 
IT management books 


Index of Business IT 


THE BOOK: Thinking for a Living: How to 
OTT UilsM4e Le) 


Get Better Performance and Results From 
Knowledge Workers, by Thomas H. Davenport 
(Harvard Business School 

Press, 2005). 

They like to be left alone, you 

can't tell them what to do, and 

they don’t particularly want to be 

managed. Their work is often un- 

structured - different every day. 

They tend to be mobile and work 

in collaborative networks. They're 

called knowledge workers, be- 

cause their primary job is to create, 

distribute or apply knowledge. It's a 

class of workers - at least 25% of the U.S. 
workforce - that includes doctors, lawyers, strate- 
gists, managers, programmers and marketers. 

So far, corporate management has pretty much 
kept its paws off these think-for-a-living employees | ——————————— (ee 
because Industrial Age productivity-enhancing WANT MORE BRIGHT IDEAS? Visit our blog: 
techniques don’t work. But Babson College IT and | www.computerworld.com/blogs/betts 


at ey ee yt) 
Employee severance costs 

Customer reaction 

Negative publicity 


Bee EV eg) 


Political pressure 
Market reaction 
Union pressure 


Competitor criticism 
et 
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Do you currently send 
work offshore? 


The public perception is that offshoring is 
rampant, but a 2005 study by offshore 
outsourcing consultancy Ventoro found 
that the vast majority of companies have 
no offshore strategy. The perception may 
be fed by the fact that of the Fortune 
1,000 companies participating in the 
study, 95% have an offshore strategy. 


Absence 
THE HEART 


MANAGEMENT 


In the next year, will you 
have an offshore strategy? 


YO) Elis 


Considering § (93% 


ae 


However, only 32% of the executives 
polled said their companies will 

be either planning or considering an 
offshore strategy within the next year. 


Base for both charts: 5,231 executives across North 
America and Europe who would generally be con- 
sidered buyers of offshore outsourcing services. 


How vital is the IT organization to the success 
of the following efforts at your company? 


15 [ 0 
Cylon hem] 
president of 
global operations 


lteter eR ass 


| have a background in business with a de- 
gree in business IT. I’m thinking of getting a 
master’s degree, but I’m not sure if | should 
get an MBA or a master’s in MIS. | want to 
be a business-technology leader. Which 
will be the better investment for me? 

The major constant for years to come will be 
change. You need to be adaptive, and your ed- 
ucation and knowledge can play a key role 
While highly technical skills will continue to be 
required in companies that specialize in creat- 
ing technology, the vast majority of enterprises 
will need people who are able to understand 
the business and configure the technology to 
serve the business need. [Read about dual IT- 
business degrees in “2 for 7,” QuickLink 55183. ] 


What are the steps | need to follow in or- 
der to become a successful business an- 


Base: 2,138 technology users at U.S. companies 


_M Remote workers — © On-site workers i Percentage responding that IT ts very important 


Improving workforce productivity a ~ 


Improving the quality of your 
company’s products and/or services 


Lowering companys operating cot —— 


ee : o = 
"Driving innovative new business.» 
practices or capabilities 


64% 
60% 


” emdiing end retaining customers —_—_—e* 
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alyst? | have just been assigned this po- 
sition and have a bachelor’s degree in 
mass communication. There are many dif- 
ferent ways to be a successful business ana 
lyst. Here's a list of what | believe to be the 
most fundamental 

@ Have a genuine interest in the business ob- 
jective; the issue to resolve is never the objective 

= Always remember that there are three di- 
mensions: people, process and technology 

@ Think holistically, end to end. Optimizing 
the overall result is what really matters. 

8 Think out of the box. Always get external 
opinions for multiple fresh perspectives. 

= Measure and quantify results. 

= Communicate, communicate, communicate. 


I’m working on my bachelor’s degree in 
IT, with a concentration in technology 
management. | also have an associate's 
degree in information systems. Right now, 
I'm looking for an internship/entry-ievel 
position, but | have no experience and 
have worked mainly in part-time cashier 
jobs. | have a 3.92 GPA. What can I do to 
get a job? Start networking with friends and 
family. They can help you learn about job open- 
ings and arrange for informational interviews 
within their companies. Informational inter- 
views are invaluable for making contacts and 
understanding the kinds of jobs that are avail- 
able. Another avenue wouid be to go to high- 
tech company Web sites and search for intern- 
ships and co-op programs. Finally, join profes- 
sional organizations to expand your network. 
Many have job listings that you could look into. 
Once you get an interview, be the most pre- 
pared candidate. Let the company know what 
you can do for it instead of what you did for 
someone else. Show that you understand its 
business and have thought about what you 
can contribute. Good luck to you! @ 55546 


Page compiled by Jamie Eckle. 


SEC R emree- Cem ae en 
technology that crawls the Internet to 
Ree Meas) ue 
site find openings on sites across the 
Web. The technology not only scours 
es com elms ct Cem gues 
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a Yahoo spokeswoman said. Users of 
HotJobs can still find advertised job 
listings on the employment site, which 
Yahoo acquired in 2002. 





HOW MANY PEOPLE DOES 
TO SUPPORT A SINGLE 


THAT’S TOO MANY. 


With IBM° Express Servers and Storage™ designed for 
mid-sized businesses, help is here. 


Servers should support a business, not the other way around. 


That's why IBM Express Servers have self-managing features: so 
that our servers can virtually run themselves. What's more, with 


IBM Express Servers and Storage, innovation comes standard. 


Take the OpenPower™ 710 Express, for instance. It's specially 
tuned for Linux® and offers the reliability of POWER5™ technology 
at a surprisingly low price: 


And while you can't be in two places at the same time, you might 


want to look into the innovative server feature that can. For example, 


the remarkable Advanced POWER™ Virtualization option — it lets 
one OpenPower 710 Express act as many virtual ones. 


On top of that there’s IBM TotalStorage” products, which offer a wide 
range of disk, tape, and storage software solutions — so you can 


choose the right options to meet the growing needs of your company. 


There’s also one more great feature — your IBM Business Partner. 


Which means you can talk to someone who understands your 
industry and your business — and who's located in your neck of the 
woods. And for mid-sized businesses, that’s really big help in a 
really big way. 


IBM eServer OpenPower 710 Express 


System features 


> ¢ omputing power, availabi 


a rack dense environment 


Up to 32GB of memory 
Optional Advanced POWER Virtualization 


=xpress Discover CD 


$4,477* 


IBM Financing Advantage 
$124 





IT TAKE 
SYSTEM? 


BM TotalStorage 3580 Express 


The 3580 Express helps 
address your growing storage 
requirements and the 
problem of shrinking backup 
windows. It supports cost- 
effective backup, save and 
restore, and data archiving. 


System features 
Built on Ultrium® 3 technology 


Read/write compatible with 
cartridges written by 
Ultrium 2 drives 

Read compatible with 
Ultrium 1 cartridges 

Up to 400GB cartridge capacity 
Up to 800GB with 
2 to 1 compression 


Limited warranty: 3 years 


From $5,850* 


IBM Financing Advantage 
nly $167 per montt 


BM TotalStorage DS4300 Express 


With a scalable design, the 
DS4300 Express is designed 
to provide a reliable and 
affordable storage option to 
help simplify your data 
management needs. 


System features 
2GB Fibre Channel SAN-ready 
3U rack mount entry leve 
Scales to 33.6TB 
5 up to 112 Fibre Channel 
Jrives — with optional 
Heterogeneous OS support 
Limited warranty: 3 years on-site 
From $8,655* 


IBM Financing Advantage 
nly $238 per montt 


@& THE WORLD’S HELP DESK 


Learn more about our 

full range of TBm Express 
products, And find the 
TEM Business Parmer 
near your - wno is TBM 
trained to Know which 
systemS meet your specific 
requirements. 


ibm.com/eserver/helpishere2 


1-800-IBM-7777 


mention 104CE02A 


SIZE OF BUSINESS © 


HELP FOR ANY SIZE PROBLEM 





HINC., JUNE 2005 


SEARC 


SOURCE: FORRESTER RE 
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OPEN-SOURCE: | 
PLUSES, MINUSES | 


What are the biggest benefits Il 
ofopen-source software? 
85% 
Low total cost of ownership 68% 
55% 
38% 
37% 


Low acquisition costs 


Hardware choice 
Better security 
Software choice 
Familiar to developers 
Higher quality 18% 
Other 10% 


What are your concerns 
about open-source? 


60% 
42% 
36% 
36% 


Lack of support 

Product immaturity 

Lack of applications 
Lack of skills 

Unexpected license costs 


Fear that the open-source 

community will splinter 

Security 

Fear of lawsuits 

Other 5% 

None 5% 
Base: 95 IT decision-makers using or 

planning to use open-source in the next 12 

months. Multiple responses accepted. 


20% 
16% 


@ Nodisappointment 

@ Management more complex 
than expected 

® Expected savings haven't 
materialized 

® Quality not as expected 

@ Has raised complexity of 
environment 

@ Don'tknow 

®@ Other 

Base: 951T decision-makers using or 

planning to use open-source in the next 

12 months. Percentage doesn't equal 100 

because of rounding. 
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Killing Zombies 


OES YOUR DEPARTMENT host a congre- 
gation of the undead? Every so often, I 
find zombies lurking in the conference 
rooms and kitchens of IT departments, 
harassing managers and staff. The un- 
dead are remarkably resilient. They are the bane of the 
managers they haunt, but they are often of the man- 


agers’ own making. 


Let me explain. One of 
my clients, the CEO of a 
midsize software company, 
recently asked me what she 
should do with a bizarre 
set of recommendations 
that she had received from 
a committee of employees. 

The group had presented 
her with a hodgepodge of 
proposals (read: demands) 
ranging from suggestions 
about product strategy to 
requests for enhancements 
to the employee benefits 
packages and ideas about 
completely reorganizing 
the company. 

As she talked about the document, I 
could see that she was more than just 
mildly frustrated by the incoherence 
of the ideas. She talked on and on 
about how much it would cost to im- 
plement the suggestions, how little 
they would benefii ihe company and 
how they contradicted one another. 
She seemed to be taking the list as a 
personal assault. 

“Do you know what prompted them 
to make these proposals?” I asked. 

“No. It’s not what they are there for,” 
she replied. 

I finally asked her to tell me about 
the committee that had submitted the 
recommendations. 

The group had been assembled to 
implement a merger of two support 
operations. Over the period of a year, 
they had studied, made recommenda- 
tions about and overseen the combina- 





tion of the two groups. 
Apparently, they had done 
an excellent job of fulfill- 
ing their original mandate. 

“So how did they get 
from that mandate to those 
recommendations?” I 
asked. 

“T don’t know,” she 
replied. 

“So why do they still 
exist?” I asked her. 

“J don’t know.” She re- 
sponded through gritted 
teeth. 

There it was. She had 
an undead committee, 
an assembled group of 

energetic, talented and well-meaning 
people roaming the building looking 
for a purpose. Once they had gone to 
all the trouble of learning to work to- 
gether as a cross-functional team, they 
apparently decided to move on and 
tackle bigger and better things. 

This kind of problem isn’t restricted 
to small groups. 

In the U.S. government, there’s a 
classic example. The Rural Electri- 
fication Administration (REA) was 
formed in 1935 with the purpose of 
bringing electricity to the populations 
of remote agricultural areas. The pro- 
gram was a tremendous success, and 
within 15 years, more than 90% of 
farms had power, up from only 10% 
when the program began. 

But did the REA gracefully close its 
doors after its core mission was ac- 
complished in the 1950s? Of course 





| not. In the 1980s, it still existed, having 


found new things to do. Unable to kill 
it, the government eventually merged 
it into another agency. 

The undead live on. 

Do you have one of those undead 
groups in your department? 

They are relatively easy to spot. 
Here’s how: For every assemblage of 
people in your organization, ask a few 
key questions: 

@ What are their three most impor- 
tant goals? 

@ Has this group outlived its original 
mission? 

@ If it has outlived its original mis- 
sion, has management assigned it a 
new mission? 

If any group lacks clearly articulated 
goals supported by senior manage- 
ment, you may have a pack of zombies 
on your hands. 

You can do one of two things: 

@ Throw a party. Congratulate the 
group on its initial success and then 
disband it. 

@ Give the group a new purpose. 
Find an appropriate and useful new 
job for the group and monitor the 
scope of its work, just as you would 
any project. 

If neither of those solutions works, 
move on to more drastic action: 

= Ensure that the key players in 
the group have so much other high- 
priority work to do that they simply 
can’t devote time to the haunting. 

@ Fire some people — but only as a 
last resort. 

So back to my client. “What did you 
do to disband the group after its work 
was done?” I asked her. 

“Nothing,” she said, with a look of 
realization. “I assumed that they 
would just stop meeting.” She sudden- 
ly understood that she had a zombie 
problem and that it was one of her 
own making. @ 55487 
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IT Professionals 
and Managers Needed 


MindTree Consulting, an estab- 
lished and expanding IT consult- 
ing company with headquarters 
in Somerset, NJ is searching for 
qualified IT Professionals (i.e 
Software Engineers, Programm- 
er/Analysts, Systems Analysts) 
Information Systems and Project 
Managers; and business devel- 
opment managers in its growing 
team 
Technical positions require a 
bachelor’s degree in computer 
science, engineering or a relat- 
ed field and relevant industry 
experience. We particularly seek 
applicants with experience in 
areas such as SAP, Oracle, 
Sybase, MS SQL Server, Java. 
J2EE, XML, HTML, DB2, CO- 
BOL, Linux, .Net Technologies 
and WebServices. 
For our Information Systems 
and Project Manager positions 
we prefer a MS degree in relat- 
ed fields such as computer sci- 
ence or engineering and rele- 
vant industry experience. We 
will consider applicants with a 
relevant bachelor's degree and 
significant industry experience 
for these positions. 
Our business development man- 
" responsibilities include 


for a region in the United States 
Qualified applicants will have a 
technical and/or business/mar- 
keting degree (master's pre- 
ferred) and relevant industry 
experience 

Positions may require relocation 
to various client sites throughout 
the United States. Qualified ap- 
plicants submit resumes to HR 
Department, The Tower, 270 
Davidson Avenue, Suite 305, 
Somerset, NJ 08873. 


Web Methods Developer. Chica- 
go, IL. Design, develop, code, 
test, debug, and document pro- 
gramming applications using 
WebMethods flow language, in- 
tegration server, Java program- 
ming language and J2EE archi- 
tecture to satisfy requirements of| 
‘one or more user areas. Provide 
24-hour daily production and 
technical support to assigned 
systems and comprehensive 
consultation to business units, 
information technology (IT) and 
Staff. Work closely with client 
management to identify and 
specify complex business re- 
quirements and processes. Re- 
search and evaluate IT solutions 
and make applicable recom- 
mendations. Conduct technical 
presentations and strategy pa- 
pers on Java and WebMethods 


Qualifications include a mini- 
mum of a Bachelor's degree in 
Computer Science or Computer| 
Engineering, or the foreign equi- 
valent, and at least four years of 
relevant work experience. Must 
have gained experience using 
WebMethods flow language, in- 
tegration server, Java program- 
ming language and J2EE archi- 
tecture through academic cour- 
sework or previous employment 


To apply for this position, visit 
our website at: http://careers 
|jpmorganchase.com/ click “Em- 
ployment Opportunities” then 
click “Search and Apply for’ 
Jobs" then click “Job Search” 
and then in the “Keyword and 
Job Number Search” field enter 
"050032678". JPMorgan Chase 
is an Equal Opportunity and 
Affirmative Action Employer, 
M/F/DNV. 


N.J. based Computer Horizons 
Corp. needs Systems Analyst to 
analyze, design, implement bus- 
iness issues and technical archi- 
tecture using Datasweep devel- 
opment tools. Will design and 
develop MES solutions using 


DBA: Coordinating System An- 
alysis, Database Design, Cod- 
ing, Testing and implementation 
of Oracle Application on Novell 
and Windows NT/2000. Perform 
configuration management, writ- 
ing functional specification, 
physical and logical data model- 
ing. Design OLAP cubes and 
reports using Business Objects, 
Cognos and SQL Server. Han- 
die production rollout with mini- 
mum downtime in an environ- 
ment consisting of complex set- 
up like Replication and Linked 
Servers. Design data warehous- 
es, data marts using ETL tools 
such as Informatica, SQL Load- 
er and SQL Server DTS pack- 
ages. Develop API'S to interface 
for implementing frequently 
changing Business logic. Under- 
take regular database backup 
and recovery process. Masters 
or Equivalent in Computer Sci- 
ence, MIS, CIS, Engineering 
(any field), Technology, or Math- 
matics. Minimum two years of 
experience in the computer 
related field in the above job 
duties. Salary will commensu- 
rate with experience. 

Please email your resume to 
hr@sisincorp.com or mail to 
Software Integration Services, 
12130 Cedar Trace Drive S, 
Jacksonville, FL, 32246. 


APPLICATIONS DEVELOPER 


SAS - the market leader in pro- 
viding a new generation of busi- 
ness intelligence software is 
seeking an Applications Devel- 
oper 4 in the Wakefield, MA ar- 
ea. This individual designs and 
develops large scale enterprise 
applications using C++, MFC, 
ATL, COM/DCO and J2EE tech- 
nology; performs database de- 
sign; and develops procedures 
on relational databases. Devel- 
oper also responsible for devel- 
oping unit and system testing 
these applications on multiple 
platforms. 


Candidates must have a Mas- 
ter's degree in Comp Science, 
Engineering or related field; 5 
years experience as Senior 
Software Engineer; and demon- 


, MFC, ATL, COM/ 
DCOM, WIN32API, J2EE tech- 
nology, Solaris, Windows and 
AIX platforms, relational data- 
bases, WebLogic, WebSphere 
and Oracie Application Servers. 


Please email your resume to 


free work environment - screen- 
ing required 


Black Diamond Capital 
Mgmt (Greenwich, CT) 
seeks Financial Analyst, 
with B.S. in Computer Infor- 
mation Systems or Finance 
+ 2 yrs. exper. Must have 
developed structured inves- 
tment software involving: 1) 
CDO/CLO, 2) compliance 
operating guidelines; 3) MS 
Access, Visual Basic and 
Excel. Send resume to: 
jhigham@bdcem.com with 
financial analyst #rt05 in 
subject heading. no calls. 
EOE. 


Weblogic Administrators: Mo- 
nitor, troubleshoot and admin- 
ister weblogic servers using 
J2EE and weblogic. Must 
have bachelor’s or foreign 
degree equivalent based on 
education and/or diplomas & 
certificates or experience. 
Req. 1 yr exp in job offered. 
Must be willing to relocate to 
various unanticipated work- 
sites throughout the U.S. as 
contracts and client demands 
dictate. Resume to: Manager, 
Vesca Solutions, LLC, 730 
Mountclaire Dr., Cumming, 
GA 30041. 


Sr Market Research Analyst, 
located in Rockville, MD/various 
client sites in USA. Will oversee, 
perform and guide research and 
analysis to quantify data related 
to wireless telecom customers/ 
competitors; evaluate technical 
and financial capabilities, ana- 
lyze the marketing strengths and 
strategies of competition; oper- 
ate independently and directly 
develop and liaison with the cus- 
tomer support facilities in US 
and Overseas, Oversee market- 
ing contracts, market analysis 
projects, and lead project teams 
in updating large sets of data, 
config/tabulation working inde- 
pendently, manage outsourced 
business processes and advise 
Senior Management. Min re- 
quirement; Master's Degree or’ 
a Bachelor's Degree + 5 yrs of 
progressive prof. experience in 
Business Admin, Econ, Tele- 
com, Engg or Sciences with 6 
yrs relevant experience. Must 
include any of the following 
wireless telecom, international 
business processes and adv. 
statistical techniques. Position 
requires extended travel and/or 
relocation. Mail resumes to 
Attn: HR Director, AV Wireless, 
Inc., 40 W.Gude Drive, Suite 
220, Rockville, MD 20850 


S/w Engr., Cincinnati, OH: An- 
alyze science, engg, bus. & data 
processing problems for applic 
to electronic data processing 
systems. Analyze user reqs. 
procedures and problems to au- 
tomate or improve existing sys- 
tems and review computer sys- 
tem capabilities, workflow, and 
scheduling limitations. Conduct 
the dev. implementation, mainte- 
nance and support of software 
applics for warehouse control 
software, sortation systems, 
print and apply, manifesting and 
carton tracking, using one or 
more of C, C++, Java, Java- 
Script, HTML, XML, Peri, Cold 
Fusion, Visual Basic, PLC, OCX, 
ActiveX, RSView, RSLink and 
RSSq!I in Win NT/2000, Unix, 
QNX environs. Convert all user/ 
clients reqs to technical specs: 
and/or review technical specs. 
Require Master's Degree in Sys- 
tems Analysis. Permanent US 
work auth reqd. Send resume to: 
Pyramid Controls, inc. 700 W 
Pete Rose Way, Suite 330, 
Cincinnati, OH 45203, Attn 

Steve Kiey. Refer to Code: WL. 


N.J. headquartered Computer 
Horizons Corp. has need for 
Management Consultant/IT, in 
Chicago area. Will analyze 
business and technical issues, 
develop standards and proces- 
ses to support business re- 
quirements and objectives, use 
MS Project/Project Server, 
make recommendations to 
senior mgt. on tactical and 
strategic solutions, present 
alternatives and industry best 
practices and standards to 
enable attainment of Capability 
Maturity Model (CMM). M-F, 40 
hrs. Masters Degree in Man- 
agement, plus 3 years experi- 
ence. Relocation expenses at 
company option. Send resume 
clo Dean, P.O. Box 900, 
Mountain Lakes, N.J. 07046. 


Computer Systems Adminis- 
trator - Analyze user reqmts, 
procedures & problems to 
automate or improve exist- 
ing comp niwork. Perform 
PC configuration, manage 
server & co. website. Admin- 
ister permissions & security 
protocols of the local area 
n/work. Train & provide user 
support to all employees. 1 
yr exp reqd. B.S. in Comp 
Sci. Resume to Sev Staffing, 
2513 Massey Tompkins Rd., 
Baytown, TX 77521. 


Software Engineer. Plan, des- 
ign, develop & implement cus- 
tomizations to Oracle Applica- 
tions Suite in jewelry manufac- 
turing & distribution operation 
performing gap analysis, custom 
development, configuration, im- 
plementation, migration & devel- 
opment of interface for many 
third party systems. BS, Compu- 
ter Science or Engineering; 5 yrs 
progressively more responsible 
information technology exp., 
including: Oracle Developer 6i, 
PL/SQL, & Workflow; 1 year 
exp. Oracle Application Modul- 
es, including Order Manage- 
ment, Advanced Pricing, Inven- 
tory, Purchasing & WIP. Exp 
may be obtained concurrently. 
Send resume to Stuller, Inc. 302 
Rue Louis XVI, Lafayette, LA 
70850. Must apply w/in 30 days 
& refer to job#25097 


Software Engineer. Plan, des- 
ign, deveiop & implement cus- 
tomizations to Oracle Applica- 
tions Suite in jewelry manufac- 
turing & distribution operation: 
will perform gap analysis, cus- 
tom development, configuration, 
implementation, migration & 
development of interface for 
many third party systems. BS, 
Computer Science or Engineer- 
ing; 5 yrs progressively more 
responsible information technol- 
ogy exp., including: JAVA, JSP, 
Oracle Developer 6i, PL/SQL, & 
Workflow; 1 yr. exp. Oracle 
Application Modules, including 
Order Management, Advanced 
Pricing, Inventory, & Purchasing 
Experience may be obtained 
concurrently. Send resume to 
Stuller, Inc. 302 Rue Louis XVI, 
Lafayette, LA 70850. Must apply 
wiin 30 days & refer to 
jjob#25096 


Systems Analyst 


Identify business objectives, 
develop architectural solu- 
tions & document software 
specifications. 


Plan, coordinate projects & 
ensure the quality. REQ: MS 
in Sys/SW Eng. 2 yrs of exp. 


Skills in Rational Tools, Visio, 
MS Project, RUP, UCM, UML, 
CMM. 40 hrs/wk 


Resume/Ad to GEMS, Inc., 
1851 Alexander Beil Drive, 
Suite 301-B, Reston, VA 
20191 


Project Manager, eProcurement 
~ Strategic Sourcing sought by 
Novartis Pharmaceuticals Cor- 
poration for East Hanover, NJ 
office. Must possess Master's 
degree in Electronic Commerce 
or directly related field and 4 
years experience in business 
process analysis and reengi- 
neering including experience in 
SAP R/3, Ariba Buyer and Ariba 
Supplier Network. Respond to: 
Arlene O'Rourke, Human Re- 
sources Dept., Requisition 
#P023, One Health Plaza, 
B105/PLO88E, East Hanover, 
NJ 07936. Novartis is an EOE 
Employer. 


Programmer Analyst needed 
w/Bach or foreign equiv. in 
Comp. Sci or Engg or Math & 
1 yr exp to analyze, dev & 
impimt automation testing 
strategies using WinRunner, 
Java, JSP, HTML, XML & 
Oracle in Unix & Win plat- 
forms. Create & maintain TSL 
Scripts regression testing of 
web-portal service. Mail res 
to: Soft Tech Source - A Div of 
Ramesh Sarva CPA, P.C., 
109-17 72nd Rd, Ste #6R, 
Forest Hills, NY 11375. Job 
loc: Forest Hills, NY or any’ 
unanticipated locs in US. 


Computerworld - August 1, 2005 


Computer & IS Manager: Ryan 
Consulting Group seeks appli- 
cants for the position of Busin- 
ess Intelligence and Data Ware- 
housing Manager (Computer 
and Information Systems Man- 
ager) to work in Carmel, IN 
Plan, direct and coordinate com- 
pany's business intelligence 
architecture. Requirements in- 
clude masters in computer sci- 
ence, two years experience as a 
Software Engineer and working 
knowledge of installation, ad- 
ministration and development 
with Cognos business intelli- 
gence products and experience 
with RDBMS/Data Warehouse 
design and development on 
Microsoft and UNIX platforms. 
Respond by resume to Venkat 
Rao, Ryan Consulting Group, 
361 Ridge Point Dr., Carmel, IN 
46032 


Software engineer to design, de- 
velop and test computer pro- 
grams for business applications; 
analyze software requirements. 
to determine feasibility of de- 
sign; direct software system tes- 
ting procedures. Requirements: 
Bachelor's Degree, educational 
or functional (3 years experi- 
ence=1 year of college) equiva- 
lent, in Engineering, Computer 
Science or related field and two} 
years experience as a software 
engineer or computer program- 
mer. Working Conditions: 8:00 
A.M. to 5:00 P.M., 40 hours/| 
week, involves extensive travel 
and frequent relocation. Apply: 
Computer Enterprises, Inc, 1910 
Cochran Rd, Manor Oak 2, Suite 
230, Pittsburgh, PA 15220, Attn: 
Stephanie Meixner, Job No 
072505 


System/Programmer Analysts, 
Software/Project Engineers or 
other IT professionals wanted by 
Imetris, an e-business solutions 
provider. MS/BS (or equiv) with 
exp required. Skills in Oracle, 
SQL, Java, SAP, PeopleSoft, 
ERP tools plus. Competitive 
wages. Please contact info@ 
imetris.com. EOE. 


System/Programmer analysts, 
S/W engineers needed by E IT 
professionals, Inc. to design 
system applications to meet 
requirements 


Unix, SQL, SAP, JSP, J2EE, MS 
Tech, etc. MS or BS with IT exp 


required. Contact pete@itprofs 
Net. EOE. No calls. 


Computer Systems Specialist: 
K&G Stores seeks applicants 
for the position of Computer’ 
Systems Specialist in Littleton, 
CO. Install, implement, cus- 
tomize and support manage- 
ment software tools including 
PDI and MSI software. Re- 
quirements include bachelor's 
degree in computer science, 
software development experi- 
ence and working knowledge 
of XML, C# and COM+. 
Respond by resume to Preet 
Puri, K&G Stores, 9777 S. 
Yosemite St., #120, Littleton, 
CO 80124 


Programmer Analyst 

Analyze science, engineer- 
ing, business. Analyze us- 
er requirements to auto- 
mate and improve existing 
systems and review com- 
puter system capabilities, 
workflow and scheduling 
limitations. B.S. in comput- 
er science or equiv. 2 yrs 
exp. 40 hrs/wk. Send 
resume: Spanning Tree} 
Technologies Inc, 433 W 
Colorado St, Glendale, CA 
91204, Attn: R. Amirian. 


Systems Administrator needed 
w/Bach or foreign equiv in 
Comp. Science or Engg or Math 
& 6 mts exp to install & maintain 
Intel based server on Win NT & 
Unix/Linux. Troubleshoot prob- 
lems on hardware & S/W. De- 
ploy & administer multi vendor 
hardware, storage & supporting 
complex networks. Configure & 
route Cisco, Linksys routers, 
switches & Proxy Firewalls. 
Evaluate complex support situa- 
tions & dev solutions using Peri, 
Unix Shell Scripts, CGi, XML, 
HTML, SSL, TCP/IP, DHCP, 
RPC, SMTP, DNS, NIS, LDAP & 
NFS. Mail res to: Netsource 
Communications, Inc., 10050 
16th Str. North, Ste 200, Saint 
Petersburg, FL 33716. Job Loc: 
Saint Petersburg, FL or in any 
unanticipated locations in the 
U.S.A 


Computer Professional NJ bas- 
ed IT firm, Jr. Level Positions 
Programmer Analysts, Software 
Engineers, Systems Analysts, 
Database Administrators to De- 
velop, create, and modify gener- 
al computer applications soft- 
ware or specialized utility pro- 
grams. Analyze user needs and 
develop software solutions. Sr. 
Level Position, IT Manager, MIS 
Manager, ITS Director needed 
to Plan, direct, or coordinate 
activities in such fields as elec- 
tronic data processing, informa- 
tion systems, systems analysis, 
and computer programming 
Apply with 2 copies of resume to 
H.R.D, Vaktech Corporation, 
LLC., 32 Sycamore Drive, 
Plainsboro, NJ 08536. 
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NEWS 


Consultant Sees ‘Disconnect’ 
On Software Licensing Plans 


BY THOMAS HOFFMAN 
In June, Pricewater- 
houseCoopers pub- 

lished a report on soft- 

ware licensing that was 

based on interviews 

with 112 CIOs and chief 
financial officers at U.S. 
technology vendors. 

Among the findings: 

Half of the companies expect 
to lose revenue this year as 

a result of corporate cus- 
tomers improperly reporting 
the amount of licensed soft- 
ware they use. David Marston, a 
PwC partner who leads the 
consulting firm’s U.S. licensing 
management practice in San 
Francisco, spoke with Comput- 
erworld recently about some of 
the issues raised by the report. 


Are software vendors moving to 
new licensing models? And are IT 
executives clamoring for them? 
There’s a disconnect there 
somewhere between what 
enterprise customers are ask- 
ing for in terms of flexible 
licensing models, and models 
that vendors have tried that 
didn’t catch on. There is a lot 
of dialogue in the industry 
about how to address that, 
but I honestly don’t see [ven- 
dors] making a mad rush to 
the door to change licensing 
models. 


What are users saying? Do they 
want to see new licensing models 
introduced into the market? A 
lot of licensees we speak to 
would like to have [a contract] 
that would provide them 
[with] more flexibility and 
ease of compliance. Most of 
these agreements are struc- 
tured by CPU or by the num- 
ber of end users; 99.9% of the 
CIOs we talk to want to be in 
compliance, especially [post- 
Sarbanes-Oxley Act] and in 
the environment we’re living 





in. But they’re resource- 
and budget-constrained, 
so it’s difficult for them 
to stay in compliance. 
They have complex 
data-center environ- 
ments, multiple loca- 
tions and IT managers 
who aren’t close to the 
terms and conditions. 


ClOs also complain about having 


to wade through 100-page soft- 
ware contracts. What are the 


Continued from page 1 


ERP Rollout 


February, and officials are now 
conducting an assessment of 
the project at the school’s flag- 
ship campus in Madison, ac- 
cording to Don Mash, execu- 
tive vice president of the Uni- 
versity of Wisconsin system. 

The assessment is due to be 
completed next month, said 
Mash, who since March has 
served as chairman of the 
steering committee that’s 
overseeing the ERP effort. 
“We don’t know where all this 
will come out,” he noted. 

The project has been in the 
works for the past six years. 
But a risk assessment report 
that was submitted to the uni- 
versity in February found that 
too much of that time — three 
years — was spent on advance 
planning. The report, written 
by an outside consultant, cited 
other problems, including in- 
stitutional resistance to Law- 
son’s software on the Madison 
campus, where PeopleSoft fi- 
nancial and student informa- 
tion software is already used. 

In addition, the report noted 
that end users were given 
technical positions for which 
they weren’t trained and that 
the project’s software testing 








chances of software vendors de- 
veloping more simplified and stan- 
dardized contract language? I 
can’t envision that ever hap- 
pening. Even within the same 
software company, contracts 
vary — and when you get 
down to negotiating, terms 
and conditions change. 

If you look five years or 
more down the road and you 
get to a place where industry 
consolidation leads to five or 
10 major software companies, 


plan wasn’t followed properly 
and eventually became “com- 
pletely disregarded.” 

A large amount of software 
customization work, which in- 
volved 251 programs and eight 
major bolt-on applications 
that were being added to Law- 
son’s software, also complicat- 
ed the project, the report said. 

The problems could push 
the price tag for the Appoint- 
ment, Payroll and Benefits 
System (APBS) to between 
$55 million and $62 million 
through 2009, according to the 
report. It said large shortfalls 
are likely, with a total of only 
about $34 million expected to 


HIM Sten 


The report pinpointed APBS 
project shortcomings and 
offered advice for dealing with 
them. Here are some examples: 


= Bad planning. “Too late to mit- 
ities to third party or ignore.” 

= Inadequate testing. “Extend 
project timeline to increase testing.” 
= Project team burnout. “Pro- 
vide incentives for team members 
with time off, relaxed schedule.” 

= Software customizations. 


“Too late to change without replac- 
ing stom.” 





and you get past the major 
| antitrust issues, maybe you 


could get vendors to agree to 


| a standard contract form. But 
} you'll still have negotiations 


galore. Nobody walks into a 
car dealer and pays the full 


| sticker price. It’s the same 


with software contracts. 


Has the Business Software Al- 
liance become more aggressive 
about conducting audits of corpo- 
rate software usage? I don’t 


| be available for the project. 


Mash acknowledged last 
week that the rollout of APBS 
across the school’s 26 campus- 
es proved complicated, and he 
said that the planning and proj- 


| ect management deficiencies 


and a lack of cooperation be- 
tween the project team and 
end users became problematic. 
“We aren’t as far along as 
we'd hoped and spent more 
money than we had originally 
acknowledged we’d need,” 
Mash said. “What we’ve spent 
and the amount of time it’s 
taken, in the big scheme of 
things, are really not out of the 
ordinary. But to the general 
public, after spending $25 mil- 
lion and there’s not a product, 
you've got a problem.” 
Although the school’s main- 
frame software can still handle 
basic functions, it’s expected 
to become obsolete within 
three years, Mash said. Uni- 
versity officials want to re- 
place it with a system that’s 
easier to use, more efficient 
and less costly to operate. But, 
he added, they’re waiting until 
the assessment is finished be- 
fore deciding how to proceed. 
One option involves swap- 
ping out Lawson’s applications 
for PeopleSoft payroll and hu- 
man resources software, which 
is now owned by Oracle Corp. 
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| know if the BSA has been 
| more or less aggressive on 
| software audits. 


But I have seen an increas- 
ing trend among enterprise 
customers toward conducting 


| self-assessments. Whether 
| it’s a reaction to a software 


vendor sending a compliance 


| letter and/or a factor of the 


Section 404 work related to 


| Sarbanes-Oxley, I’m not sure. 
| But companies are saying that 
| their software asset manage- 

| ment controls aren’t as robust 
| as they thought they were, so 


they’re opting more towards 
doing self-assessments. I do 


| see more self-assessments 


than I did a year ago; that’s a 


| fact. @ 55847 


| However, Mash sees that as 
| unlikely. “Whether or not we'll 


start with another company 

isn’t known, but it would be a 

stretch to do that,” he said. 
The university is Lawson’s 


| largest client in the higher 
| education market, said Dan 
| Schmidtke, a strategic account 


manager at the St. Paul, Minn.- 


| based vendor. He said that the 


problems with the APBS proj- 
ect stem from issues beyond 
Lawson’s control. 

“There are no material is- 


| sues with Lawson’s products 


or services,” Schmidtke said. 
“We have a good, strong rela- 


| tionship with UW and look 





forward to their go-live.” 
Cost overruns for a human 


| resources and payroll system 


aren’t unusual, although out- 
right failure is, said Paul 
Hamerman, an analyst at For- 
rester Research Inc. No matter 
which vendor is involved, he 
added, there will be signifi- 
cant complexity for a rollout 
at any academic institution 
with multiple campuses and a 
variety of compensation poli- 


cies and practices. @ 55860 


A school district in Tampa, Fla., cautiously 
readies its Lawson ERP implementation 
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einventing EHR 


OW WOULD YOU reinvent part of the software indus- 

try? Back in March, I suggested that Medicare — the 

800-pound gorilla of health care — could break the 

logjam in electronic health records by requiring EHR 

for all doctors who do business with it, much like Wal- 
Mart is forcing its suppliers to adopt RFID [QuickLink 52932]. 

This month, Medicare is doing something even more dramatic: It’s 
giving away free EHR software that’s customized for private medical 
practices. In a single stroke, Medicare is setting de facto standards 
for EHR and making EHR more affordable. 

And shaking up the whole EHR software business in the process. 


If you’ve been following the nonprogress of 
EHR, you already know that individual doctors 
are the ones who haven’t converted patient 
health records from paper to computerized sys- 
tems. Hospitals have made the transition over 


the past decade, spurred by laws such as HIPAA. 


But doctors in private practice have dragged 
their feet, mainly grumbling about cost. And at 
a typical price tag of $20,000 per doctor for 
commercial EHR systems, that’s no surprise. 

Medicare’s solution? Take an existing EHR 
system called VistA, scale it down and make it 
easier to install, then rename it VistA-Office 
EHR and give it away to anyone who wants it. 

But wait, you ask, where does Medicare get 
off giving away free software and undercutting 
EHR vendors? And where did Medicare get this 
software it’s giving away, anyhow? 

Hang on — this gets complicated. VistA 
comes from the Department of Veterans Af- 
fairs, which developed it in 1996 and has been 
running VA health care facilities with it ever 
since. And VistA is actually just the client/ 
server version of the VA’s Decentralized 
Hospital Computer Program, which 
the agency has been using since 
1985 in 1,300 VA facilities to main- 
tain health records of 5 million vet- 
erans. That’s what we call “mature.” 

And because it’s software devel- 
oped with taxpayer dollars, it’s in 
the public domain. Anyone can get a 
copy of VistA under the Freedom of 
Information Act and then make as 
many copies as he likes. It’s sort of 
like open-source software, but with- 
out any open-source license. 

Wait, there’s more. VistA was 
built on a database engine named 





MUMPS (now called just M). VistA is free, but 
M requires a license fee. VistA has also been 
rewritten as an open-source version called 
Open Vista, which runs on Linux and uses its 
own open-source version of MUMPS, so there’s 
no license fee. 

Medicare’s VistA-Office is also in the public 
domain, requires M and runs on Windows. 
That’s what doctors can get their hands on 
starting this month. They’ll have to pay license 
fees for M and a few other modules, but that’s 
only about one-tenth of the cost of a commer- 
cial EHR license. 

So, what about commercial EHR vendors? 
They haven’t actually lost any sales, since the 
70% of medical practices without EHR weren’t 
buying the high-priced spread anyway. 

But because VistA-Office is public domain 
software, commercial vendors can get it free, 
enhance it, copyright their improvements, then 
sell it for whatever price the market will bear, 
creating their own low-end proprietary prod- 
ucts. And they can tweak their high-end prod- 
ucts to make sure they’ll interoperate with 

VistA-based EHR. 

Result: Instead of pricey incom- 
patibility, we could end up just a 
few years from now with public 
domain, open-source, and low- 
and high-end proprietary EHR 
products that all work together — 
and a lot more doctors using EHR. 

Of course, that’s what the 
Medicare people have in mind — 
to get doctors to use EHR. They’re 
not trying to reinvent the EHR 
software business. 

But don’t be surprised when 
that’s what happens. @ 55837 
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